|
|
|
|
|
|
by llgrrl_
5027 days ago
|
|
|
Not the first time that fingerprint readers are deemed the wrong answer (to the "wrong" problem? -- one better not trust their own fingerprints to keep their data secure) From ThinkWiki:
http://www.thinkwiki.org/wiki/Integrated_Fingerprint_Reader The UPEK device is supported by thinkfinger. Those devices and Authentec ones are supported by libfprint. However: The fingerprint reader is an INSECURE device and gives a false sense of security! There has been quite a bit of research by a hacker named Starbug, a member of the Chaos Computer Club, Berlin, Germany. He outlined in two very good talks how to forge each and every available fingerprint sensor available at the cost of a few euros, using materials from your local hardware store, a digicam and a laser printer! Remember, using fingerprints for authentication is much similar to having a password which is written on anything you touch. |
|
|
I lose a jump drive containing a key file? Easily change the keys on the server. The lost key is no good to anyone anymore.
My fingerprints get compromised? Uh... cut my own fingers off? Nope, they still have access. And now I have no fingers.