• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

Mobile ID World

Mobile ID World

Identification Revolution

  • Mobile ID
    • What Is Mobile ID?
    • Identity Associations
    • Premier Partners
    • FAQ
  • News
  • Solutions
    • Behavioral
    • Facial Recognition
    • Fingerprint Biometrics
    • Iris Biometrics
    • Second Factor
    • Smart Cards
    • Smartphones
    • Vital
    • Voice
    • Wearable Tech
    • Other
  • Applications
    • Access Control
    • Cloud Technology
    • Commerce
    • Enterprise
    • Healthcare
    • Identification
    • Internet of Things
    • Law Enforcement
    • Strong Online Authentication
  • Exclusive
    • Interviews
    • Featured Articles
    • Podcasts
  • Companies
  • Events

Researcher’s DEFCON Presentation Underlines Need For Biometric Anti-Spoofing Tech

August 13, 2020

“While Levalle’s findings should obviously be concerning to any organization that relies on fingerprint authentication for security, the time, expertise, and equipment needed to create the fake likely makes it prohibitively difficult for most people.”

Researcher's DEFCON Presentation Underlines Need For Biometric Anti-Spoofing Tech

Argentinian security researcher Yamila Levalle warned attendees about the threat of fingerprint spoofing during a presentation at the DEFCON virtual security conference on August 8, reports Info Security Magazine. In her presentation, Levalle explained how she was able to turn a latent print into a passable fake finger that was able to trick several different kinds of fingerprint scanners.

To create her fake print, Levalle started out with a digital camera with macro image capabilities. She used the camera to lift a latent fingerprint, and then optimized that print with an open source Python tool. After that, she imported the print into a 3D modeling tool to generate a template that could be sent to a 3D printer.

The final stage was the actual 3D printing of the finger. Levalle noted that human fingerprint ridges have a height that is somewhere between 20 and 60 microns, so she used a consumer-grade Anycubic Photon 3D printer with a resolution of 25 microns. However, she indicated that she would have been able to achieve similar results with any UV Resin type 3D printer that offered a comparable level resolution.

That last part required some trial and error, since Levalle did not have a surefire way to match the length and width of her fake finger to the length and width of the original. She was eventually able to produce a convincing fake after more than 10 tries.    

“It’s not easy to duplicate the fingerprint,” said Levalle. “It takes time and experience, but it can be done.”

While Levalle’s findings should obviously be concerning to any organization that relies on fingerprint authentication for security, the time, expertise, and equipment needed to create the fake likely makes it prohibitively difficult for most people. FPC has said as much in the past, arguing that such fakes are impractical for large-scale criminal operations. 

Even so, the results do indicate that many biometric authentication systems may be more vulnerable than their creators would like to acknowledge. At the very least, most companies are not as bold as FaceTec, which recently upped its bounty and is now offering up to $100,000 to anyone who can spoof its facial recognition system. No one has been able to claim the prize thus far.

Source: Info Security Magazine

–

(Originally posted on FindBiometrics)

Filed Under: Industry News Tagged With: 3D printer, Biometric, biometrics, DEFCON, fake finger, Fingerprint, research, spoof

Related News & Articles

Biometric Authentication Wearable Keeps Workplaces Sanitary

FPC Sensors Now Used in 400 Smartphone Models

NymCard Becomes Zwipe’s Latest MENA Partner in Expanding Biometric Card Effort

Primary Sidebar

Register For the Next Virtual Identity Summit

Register now!

Tweets

Sponsored Links

facetec logo

FaceTec’s patented, industry-leading 3D Face Authentication software anchors digital identity, creating a chain of trust from user onboarding to ongoing authentication on all modern smart devices and webcams. FaceTec’s 3D FaceMaps™ make trusted, remote identity verification finally possible. As the only technology backed by a persistent spoof bounty program and NIST/iBeta Certified Liveness Detection, FaceTec is the global standard for Liveness and 3D Face Matching with millions of users on six continents in financial services, border security, transportation, blockchain, e-voting, social networks, online dating and more. www.facetec.com

FACEPHI is a global leader in Facial Recognition technology and in Mobile Biometrics technologies. With a strong concentration in the financial sector, FacePhi’s product is rapidly becoming a service used by banks all over the world. Its implementation doesn’t just save money, it is also a way to attract clients and build loyalty, while increasing the security of transactions for both the customer and the business. To learn more about FacePhi, visit https://www.facephi.com/en/

Recent Posts

  • Thai Authorities Approve Mobile ID for Airport Boarding
  • New Yoti Solution Ties Biometrics to e-Signatures
  • Kenya’s New President Pushes for Digital ID By Year’s End
  • MDL, Digital ID Gain Momentum in State Efforts
  • Brazil-based Selfie Onboarding Startup Reports 250% Sales Jump, Global Expansion

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives
  • CCPA: Do not sell my personal info.

Follow Us

Copyright © 2023 MobileIDWorld