Hackers reportedly bypass Samsung Galaxy S8's 'airtight' iris scanner
Hackers have once again proved there's no such thing as true security for your phone. Researchers at the Chaos Computer Club (via Motherboard) claim to have bypassed the iris scanner on Samsung's Galaxy S8 using a simple photo of a person's iris and an ordinary contact lens. Samsung's "airtight" (the company's word, not mine) iris scanner is included on the Galaxy S8 as an alternative form of biometric security in addition to the built-in fingerprint sensor. Galaxy S8 users can choose to set up the iris scanner, which is more secure than the face recognition, to unlock the phone or authenticate Samsung Pay mobile payments. The biggest advantage to using an iris scanner compared to face recognition is that ordinary photos usually can't fool it. An ordinary photo doesn't contain the unique patterns in a person's eyes that can only be seen with an infrared sensor. That's exactly why the CCC didn't use an ordinary photo to trick the S8's iris scanner. For its hack, the CCC used a "good digital camera with 200mm-lens at a distance of up to five meters" to take a photo of a person's eye. The camera was switched to its "night mode" in order to capture the iris' patterns. The image of the iris was then printed on a laser printer (ironically, a Samsung one) and a contact lens was placed on top to give it depth. CCC registered a person's iris on the S8 and then tested the fake iris. Lo and behold, it worked and the phone unlocked. BUT... as simple as the hack sounds, it still requires some trial and error. CCC even says as much (emphasis mine): Depending on the picture quality, brightness and contrast might need to be adjusted. If all structures are well visible, the iris picture is printed on a laser printer. How many images -- adjusted for image quality, brightness, contrast, etc. -- were tested before they got one that worked? I reached out to CCC on Twitter for more details. CCC's Jan Krissler (aka "starbug") told me over direct message they tested three printers, printing five to ten variations per printer, before they got a positive with a Samsung laser printer. The printout of the iris worked out to "80 pixel iris diameter." "The Samsung model was a standard consumer product, around 250 Euro. We tested multiple prints on multiple kinds of paper. All of them worked. It worked instantly after we found the working printer." The iris scanner hack isn't unlike the many fingerprint sensor hacks we've seen over the years. It looks easy enough, but the probability of it happening is unlikely. How many people have photos of their eyes, captured with night mode, floating around on the web? (Again, your regular selfies won't fool the iris scanner.) As proof-of-concept, yes it works. But the same goes for breaking open your home's door lock or car door. It's possible, and anyone who really wants to gain access could jump through these hoops to get into your phone, but is it a reason to live in fear or not buy this phone? Not at all. We reached out to Samsung for official comment on the hack and received the following: "We are aware of the issue, but we would like to assure our customers that the iris scanning technology in the Galaxy S8 has been developed through rigorous testing to provide a high level of accuracy and prevent attempts to compromise its security, such as images of a person’s iris. If there is a potential vulnerability or the advent of a new method that challenges our efforts to ensure security at any time, we will respond as quickly as possible to resolve the issue."
Featured Video For You
Hands on with Samsung's Galaxy S8
相关推荐
-
厚植精神文明沃土 培树司法文明新风
-
Russia unlikely to provide high
-
[ANALYSIS] Timing of North Korea's satellite launch suggests growing impatience of its leader
-
Sam Smith releases new edition of 'I'm Not The Only One' featuring K
-
高燃!哨响表停赛不止,2024广东“村BA”开赛在即,一分钟带你重温高光瞬间。
-
[News Focus] Debate on South Korea’s nuke armament reignited
- 最近发表
-
- NASA's new plan keeps Starliner astronauts in space until 2025
- Russia's government
- Best tablet deals: Save on Samsung, Amazon Fire, and Apple
- Resourceful beauty blogger employs fluffy cat for staging assistance
- How much for Oasis tickets? Fans joke about splurging on reunion shows
- Shop MacBooks up to $500 off at Best Buy
- Oosthuizen seeks inspiration from long wait for second major
- 9 awful things Sean Spicer was cool with, but his new boss? Nope, nope, nope
- 'Please find her': Man dies amid 25
- Plot thickens as Perez recordings target Ronaldo, Mourinho
- 随机阅读
-
- 味道真系正!怀集食材邂逅顺德厨艺
- Formula One boss hails 'sensational' sprint debut
- [ANALYSIS] Timing of North Korea's satellite launch suggests growing impatience of its leader
- 18 Unexpected Natural Wonders in Florida
- 3D Game Rendering 101
- Student detained in N. Korea is S. Korean: official
- Fitbit's new fitness trackers are all about personalization
- N. Korea's ceremonial leader to visit Moscow for war event
- Sinner vs. Michelsen 2024 livestream: Watch US Open for free
- Russia arms talks with NK 'actively advancing': White House
- Best tablet deals as of August 27
- N. Korea's Kim arrives in Pyongyang after Russia trip: state media
- We Bought the Cheapest DDR5 RAM Modules We Could Find, Are They Any Good?
- 邮储银行韶关市分行:特色金融助力“百千万工程”,贷动县域产业提质升级
- MTV VMAs 2016: Britney Spears Performs 'Make Me'
- Nicki Minaj has no idea how to use Snapchat and it's hilarious
- Trump won't stop making a deceptive bird claim. Experts debunk it.
- Woman has farting nightmare in first yoga class, heads straight to McDonald's
- Islam Makhachev submits Thiago Moises in Round 4 at UFC
- The royal family just released three photographs from Princess Diana's personal album
- 搜索
-
- 友情链接
-