(P.S. Please no replies from humor-impaired folks.)

Re:This problem is solved by redundancy (Score:5, Funny) by gerf (532474) on Friday June 27, @05:59PM (#6315259) (Last Journal: Monday July 29, @09:50AM)

This isn't a problem because most people have extras of the body parts used for most biometric schemes. For example, you probably a large supply of fingers (about ten), so it doesn't matter if a few get compromised. Similarly, if you have two eyes, it's not a big deal if your retinal print becomes known to bad guys. (P.S. Please no replies from humor-impaired folks.) I don't get it. The way you're talking isn't in a standard joking format at all. Maybe you Canadians have a different sense of humor?

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:5, Funny) by stefanlasiewski (63134) * <{flarg} {at} {flarg.org}> on Friday June 27, @06:19PM (#6315408) (http://www.flarg.org/ | Last Journal: Saturday June 28, @03:40PM)

I don't get it. The way you're talking isn't in a standard joking format at all. Maybe you Canadians have a different sense of humor? Yeah really. In the States, all of our humor formats have been standardized by the Department of Homeland Security. Currently, I'm 80% done with my ISO9666 humor certification. When I'm done, everyone will be able to understand and interface with my humor.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:5, Funny) by Xzzy (111297) <sether&tru7h,org> on Friday June 27, @06:27PM (#6315462) (http://tru7h.org)

I'm sorry, go back and read chapter two, where they talk about humor types by geographic region. Your above intended format falls into "excessively dry", which if my memory serves is a method perfected, and quite jealously defended, by the British. American humor is expected to involve either bodily functions or blonde women. Failure to employ region-appropriate humor will potentially flag you for review as a potential terrorist.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:5, Funny) by YU Nicks NE Way (129084) on Friday June 27, @06:56PM (#6315630)

Please put your tin-foil hat away. The incorrect use of humor will not flag anyone for review as a potential terrorist. There is no reason to be concerned that we will interfere with any humor-related deviance. It is only in those cases where individuals with perverted senses of so-called humor that pose a threat to our national security (as determined by our objective and reproducible criteria), and who aver themselves unwilling to participate in our voluntary humor-retraining camps, who will be marked for review. In order to reduce the number of individuals whose privacy will be sacrificed to review, we will use only publicly available data. In order to incentivize those who will be encouraged to attend humor-improvement camps, we intend to locate them in tropical locations near to the ocean, but not on US territory.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:2) by mcrbids (148650) on Friday June 27, @07:04PM (#6315664) (http://www.effortlessis.com/)

American humor is expected to involve either bodily functions or blonde women. Yeah, or Polish people.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:2) by stefanlasiewski (63134) * <{flarg} {at} {flarg.org}> on Friday June 27, @10:09PM (#6316831) (http://www.flarg.org/ | Last Journal: Saturday June 28, @03:40PM)

Yeah, or Polish people. Hey in that case, I think I qualify :)

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:2) by corbettw (214229) on Friday June 27, @07:31PM (#6315834)

"American humor is expected to involve either bodily functions or blonde women." Of course, the best humor involves both.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:This problem is solved by redundancy (Score:1) by znode (647753) on Saturday June 28, @04:21AM (#6318376) (http://znode.sytes.net:25080/)

I repeat; there is no American humor on Iraqi soil. We have choked, gagged, and croaked our foes with superior Iraqi humor. The infidels shall suffer the wrath of Bill-alshaf Cosb-ylti!

[ Reply to This | Parent ]

Humor (Score:2) by sulli (195030) * on Saturday June 28, @09:02PM (#6322388) (http://sulli.org/ | Last Journal: Tuesday July 01, @01:03PM)

Failure to employ region-appropriate humor will potentially flag you for review as a potential terrorist. Do what I did - upgrade your humo[u]r to Region-Free!

[ Reply to This | Parent ]

• 3 replies beneath your current threshold.
• 1 reply beneath your current threshold.

Re:This problem is solved by redundancy (Score:3, Funny) by nacturation (646836) on Friday June 27, @06:31PM (#6315497)

I don't get it. The way you're talking isn't in a standard joking format at all. Maybe you Canadians have a different sense of humor? If you *insist* on American style humor, here it is: [audience laughtrack #24]

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:1) by sproketboy (608031) on Friday June 27, @11:25PM (#6317167)

Maybe. Maybe we should recall Jim Carey, Dana Carvery, Mike Meyers and Lesley Neilson. We'd take John Candy back too but you killed him with all that McDonalds food!

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:1) by majestyk2000 (256822) on Tuesday July 01, @01:21PM (#6340620)

Jim Carey, Dana Carvery, Mike Meyers and Lesley Neilson. I'm not sure how you did it, but you managed to misspell EVERY name in that grouping there. How about we give you back all those people, and keep Jim Carrey, Dana Carvey, Mike Myers, and Leslie Nielsen? At least you spelled John Candy right.

[ Reply to This | Parent ]

• 2 replies beneath your current threshold.

Re:This problem is solved by redundancy (Score:3, Insightful) by randyest (589159) <(ranorano) (at) (hotmail.com)> on Friday June 27, @06:33PM (#6315508)

This isn't a problem because most people have extras of the body parts used for most biometric schemes. It's not a problem at all. On the contrary, it is a really good discovery IMHO. The most important conclusion from this is (from the talk slides): Biometric software systems should provide yes/no only, with no match score values. My question is: why would the software systems ever need to give a match score value, instead of a yes/no answer in the first place? It's not like the algorithm developer is there operating the machine and can thus use the score result to help decide what to do with "near" matches. Most of the people using these machines, I would surmise, are pretty clueless about how they work (except in a very general sense, of course), so providing a score result would only be confusing and a potential source of misidentification: "Hmm, that John Doe matched with a score of 95, and it turned out not to be the guy, so this 94 score can't possibly really be Osama Bin Laden -- go ahead and let him on the plane with his antique ceremonial religious knives." Either the system thinks it knows the person's face, or it doesn't. That's all it needs to say. Saying just that and nothing more will protect privacy (in that you can't reconstruct the face without the template and quantitative match score results), and it will prevent operator confusion and some types of misapplication.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:3, Insightful) by PaulBu (473180) on Friday June 27, @07:47PM (#6315930) (http://slashdot.org/)

Maybe because in different situations different threshold would have to be applied. E.g., if it is a terrorist monitoring camera on a random street corner, it might not be feasible to unleash FBI agents after every guy who matched at 80%, but if that random street corner happens to be in Washington, DC across the street from the White House, 80% confidence might be a reason to trigger further actions. And if it is a camera in the cash machine and you claim that you are Joe and want to get your $500, you better match Joe's face at, say, 99% (it can also ask you to turn a bit and face the lens if your score is lower than some threshold. Another example, if an airport screener can realistically check 10 people out of a hundred, she chooses ones with the highest scores. Yes, it might mean that John Doe in your example will be checked, and Osama will be not, IF there are other 9 people in line with scores >=95. Algorithms used might be the same, but exact policy is implemented by taking scores into account. There is more than binary yes/no in this world... Paul B. P.S. Not that I know anything about the actual numbers or policies, but I can see the value of having the scores available to people who program the machine, but not necessarily to the screeners (if any) who operate them.

[ Reply to This | Parent ]

Re:This problem is solved by redundancy (Score:1) by Axel Eble (685299) on Saturday June 28, @12:59PM (#6319882)

Did you think about what will happen when your face is incorrectly recognized? Knowing people I believe you will be singled out at $airport and treated as a terrorist even if you could prove that you are not the culprit. The current political climate in the US (and several other terrorist-crazed parts of the world) will happily use anything that they think might work without wanting to hear people who see the problems with the latest and coolest technology. The end users will believe the system because they were trained to. The innocent people that happened to suffer from a false positive will lose the most.

[ Reply to This | Parent ]

Think of what might happen to body parts (Score:3, Insightful) by gotr00t (563828) on Friday June 27, @08:25PM (#6316129) (http://mod.homelinux.org/ | Last Journal: Saturday December 07, @01:34AM)

When will people get concerned that their body parts are now vulnerable? Desperate criminals who want to infiltrate, or governments, for that matter, would find it rather suitable to simply kill a person and remove their face, eyes, fingers, etc., to use in a biometrics device. This is even easier to compromise than having a keycard or something, as the individual could at least hide it somewhere. They CAN'T hide their face without

[ Reply to This | Parent ]

Regarding eyes (Score:2) by Merk (25521) on Saturday June 28, @01:29AM (#6317810) (http://infofiend.com/)

I remember reading a paper about biometric identification using the iris. The bit I remember is that it is really easy to tell if the eye you're scanning is alive or not. For example, as part of the scanning process the machine just needs to go from dark to bright in a short time. If it does that and the pupil doesn't narrow then the eye isn't attached to a living body. I can't speak for other body parts, but it's unlikely anybody will pluck out your eyes and scan them.

[ Reply to This | Parent ]

Biometrics: Read Bio - "Living" (Score:1) by MadCow-ard (330423) on Saturday June 28, @02:59PM (#6320482)

It is not a pure fingerprint reader anymore, it is a "living specimen" and fingerprint reader. Sure the old ones are still sold, but they are considered low end. If any real security is needed, the latest generation will detect living versus dead. The previous post mentions the same with iris readers. The same is true of retinal, hand geometry, and voice print (theoretically by multiple passes). The only one I'm not sure of is facial geometry, but I would assume that digital video from which its taken would clear up the issue of dead or alive ;-). Lets see how long it takes to hack the new systems. It seems to me the real vulnerability is not in the recognition, but in the fact that the system is computerized and therefore hackable. And as we all bemoan with Biometrics, once comprimised, forever lost.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:Other systems too? (Score:3, Interesting) by spydir31 (312329) * <hastur@h a s t u r k un.com> on Friday June 27, @06:27PM (#6315458) (http://www.hasturkun.com/)

Keystroke and timing capture/playback is trivial, I wouldn't go trusting that as secure.

[ Reply to This | Parent ]

Re:Other systems too? (Score:5, Informative) by NixterAg (198468) on Friday June 27, @06:29PM (#6315483)

BioPassword unfortunately suffers from a habit of producing false rejections. It really diminishes its usability. BioPassword's best trait is that it doesn't require an additional hardware purchase to work. Several high profile banks inspected BioPassword to determine whether they could use it for identity authentication within the context of online purchases. They came to the conclusion that it wasn't usable enough. I think many people miss the boat when it comes to biometric identity authentication. The fact is, any security protocol can be exploited. The idea is to make it a protocol difficult enough to exploit so that it isn't in the best interests of an attacker to go after whatever is being secured. It's like cryptography. There is no unbreakable code or cipher, but there are codes that are difficult enough to break that it isn't worth the time or effort required to break them.

[ Reply to This | Parent ]

Re:Other systems too? (Score:2) by Kashif Shaikh (575991) <k2shaikhNO@SPAMyahoo.com> on Saturday June 28, @01:27AM (#6317797)

So why don't we just create a long 50000-bit key and slap it onto a magnetic-swipe card? That way, the system is only comprised when: a) You lose the card b) Someone threatens you at knife-point to hand the card over. In such cases, you simply call the card authority to invalidate the card's key and get a new one.

[ Reply to This | Parent ]

Re:Other systems too? (Score:2) by Dun Malg (230075) on Saturday June 28, @12:13PM (#6319656) (Last Journal: Thursday May 01, @09:15PM)

So why don't we just create a long 50000-bit key and slap it onto a magnetic-swipe card? A huge key is unnecessary. If they have the card, they have the key. The key exists solely to keep someone from whipping up a card with your user ID and getting instant access. No one is going to guess your key even if it's only 128 bits. That way, the system is only comprised when: a) You lose the card b) Someone threatens you at knife-point to hand the card over. Seeing that we already have the system you describe above (sans ridiculously large key) in use for ATMs, one has to look at the purpose of biometric authentication. Yeah, that's right: with biometric you can't easily a) lose the "key", and b) no one can easily take it from you at knifepoint.

[ Reply to This | Parent ]

Re:Other systems too? (Score:1) by AllenChristopher (679129) on Saturday June 28, @04:51PM (#6320975)

They can, however, take some biometrics at knife edge.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:Something i've always wondered (Score:2) by mgcsinc (681597) on Friday June 27, @06:44PM (#6315580)

Two things; one, I'm not so worried about strangers as those who coinhabit a dwelling with me! secondly, there is a traditional multi-password bypass feature for BioPassword...

[ Reply to This | Parent ]

Re:Something i've always wondered (Score:1) by mgcsinc (681597) on Friday June 27, @07:28PM (#6315809)

You ever come back to your comp to find lovely little treats in your history folder?

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.
• 1 reply beneath your current threshold.
• 2 replies beneath your current threshold.

Re:paranoia (Score:2, Funny) by Emugamer (143719) * on Friday June 27, @06:08PM (#6315335) (http://www.un.org/)

Micheal, is that you? I didn't recognize you with two gloves on!

[ Reply to This | Parent ]

Re:paranoia (Score:2) by donutz (195717) <donutz&yahoo,com> on Friday June 27, @06:11PM (#6315358) (http://www.byzantinecommunications.com/adamhoward | Last Journal: Monday June 30, @06:26PM)

I bet they've already got a system that can identify you by the way you walk, or it's being developed. All they need you to do now is walk down that hallway in your apartment building and the floor sensors will have you identified...

[ Reply to This | Parent ]

Re:paranoia (Score:3, Funny) by Jeremiah Cornelius (137) <jeremiah@@@nur...net> on Friday June 27, @06:20PM (#6315419) (http://www.jeremiahcornelius.com/)

Yeah, There was news here a few months ago about this - it does exist. Problems include a high failure rate when women switched between high-heels and flats, etc...

[ Reply to This | Parent ]

Re:paranoia (Score:2, Interesting) by SoSueMe (263478) on Friday June 27, @06:27PM (#6315459)

Here [gazettetimes.com] is a little more on this.

[ Reply to This | Parent ]

Re:paranoia (Score:3, Funny) by CVaneg (521492) on Friday June 27, @06:30PM (#6315488)

Man. I bet John Cleese could make a fortune teaching classes on defeating this system.

[ Reply to This | Parent ]

Re:paranoia (Score:2) by aaarrrgggh (9205) on Friday June 27, @06:26PM (#6315454)

...aah, so then we go for the "ants in the pants" disguise!

[ Reply to This | Parent ]

Re:paranoia (Score:2) by shadowbearer (554144) on Friday June 27, @07:41PM (#6315899) (http://slashdot.org/)

It' never work for me. My gait changes considerably on cold, wet days when the arthritis in my knees kicks in.     Something like that would, as someone else noted, also produce false rejections depending on the type of shoes worn, whether your pants are tight or loose, etc. What if you broke an ankle? Your gait would change considerably for months as it healed up (I've spiral-fractured one, and it was nearly a year before I could walk decently again).   But you know, I'd bet some company somewhere is already working on something like this.... SB

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

or... (Score:1) by SoSueMe (263478) on Friday June 27, @06:19PM (#6315409)

Rumors out of Europe tell of Eminem dressing his hotel room in tinfoil in order to thwart people from eavesdropping on his cellphone calls. From TechTV [techtv.com]

[ Reply to This | Parent ]

Re:paranoia (Score:2) by darnok (650458) on Saturday June 28, @04:19AM (#6318370)

> maybe i should extend my tin-foil hat to a tin-foil > facemask and a pair of shiny gloves... that way > they'll never recognise me! Nice idea, C3PO, but I don't think you'll get away with it...

[ Reply to This | Parent ]

I left my wallet at Wonderland Ranch. (Score:2) by JonTurner (178845) <jon.turner@mindLIONspring.com minus cat> on Monday June 30, @03:58PM (#6333435)

"maybe i should extend my tin-foil hat to a tin-foil facemask and a pair of shiny gloves... that way they'll never recognise me!" That's true, they mightn't recognize you, but if you're planning to venture into public you had best practice your dance moves and your falsetto singing voice, Mr. Jackson.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:Facial recognition (Score:5, Insightful) by Herr_Nightingale (556106) on Friday June 27, @06:15PM (#6315384) (http://www.maxboxing.com/)

the point that EVERYbody is missing is that biometric authentication is inherently flawed - it's like a password that cannot be changed. Obviously there are innumerable flaws. How is this news?

[ Reply to This | Parent ]

privacy issues aside... (Score:1) by JW Troll (607432) on Friday June 27, @09:54PM (#6316744) (http://www.microsoft.com/)

If the password can't be changed, then the corollary is that biometrics are no good for authentication; however, they excel at providing a convenient method of tracking/auditing provided that one cares little for security. If I were the marketing guy, I'd pitch it that we're all willing to trade convenience for security - forget about the privacy issues.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:At least a good guy discovered this (Score:4, Funny) by gregmac (629064) on Friday June 27, @06:06PM (#6315322)

It just goes to show that no matter what, things can be hacked/bypassed/etc somehow. Not anymore, Palladium is here to save us.

[ Reply to This | Parent ]

the intent of Palladium (Score:2) by alizard (107678) <alizard@ecis.com> on Saturday June 28, @04:01AM (#6318335) (http://www.ecis.com/~alizard)

is to protect Microsoft and DRM customers from the public. Who's going to protect either MS or us? As I understand it, X-Box was intended as a testbed for "Trustworthy Computing". A small bunch of dedicated fanatics cracked it. How many million people are going to try to make a rep for themselves by trying to crack Palladium / TCPA, and will all of them be "good guys" who at least will let us who subscribe to BugTraq and Full Disclosure know where the security holes are?

[ Reply to This | Parent ]

Re:At least a good guy discovered this (Score:2) by Dylan Zimmerman (607218) <rgdtad.aol@com> on Friday June 27, @07:59PM (#6315989)

What do you mean, "a good guy discovered this"? Do you actually think that anybody who would exploit it would TELL us that he could exploit it? Honestly. Biometric identification is inherently flawed because it relies on things that cannot easily be changed (i.e., without major surgery), but that can be reproduced. This has been known for years. They even use similar situations on TV shows (Paul Milander, anyone?).

[ Reply to This | Parent ]

Re:At least a good guy discovered this (Score:2) by chundo (587998) <.jjongsma79. .at. .hotmail.com.> on Friday June 27, @09:52PM (#6316733)

Anything can be hacked when you're storing it in the clear. Of course you'll be able to regenerate the template when you already know exactly which points need to match. The solution to this "exploit" is to run a cryptographic algorithm on the facial template before storing it anywhere. Just like /etc/shadow... you can provide an unencrypted facial template, encrypt it, and compare the two results - but you can never regenerate the original from the encrypted record (well, not without more computing power than is realistically available). -j

[ Reply to This | Parent ]

Re:At least a good guy discovered this (Score:1) by geronimo_jerry (620406) on Friday June 27, @10:14PM (#6316851) (http://www.cotse.net/users/geronimo/)

yea, but how long will it be before the Feds break down his door screaming "...DMCA! DMCA! DMCA!"

[ Reply to This | Parent ]

Sometimes we give criminals to much credit. Again, if it's someone that can go through all three of those, they were going to get past the toughest of Indiana Jones hurdles.

Re:One thing that is missing from "the spoof" (Score:5, Funny) by Emugamer (143719) * on Friday June 27, @06:12PM (#6315360) (http://www.un.org/)

Biometric analysis equipment $250,000 Staff time to implement new security procedures $12500 Sledge hammer: $25 Expression on the Project Manager's face after he realized he should have installed a better door: Priceless

[ Reply to This | Parent ]

Re:One thing that is missing from "the spoof" (Score:2) by u19925 (613350) on Friday June 27, @07:04PM (#6315662)

"but it also takes your body temp average/..." how long, does it take to measure body temp average? days, months, ...?

[ Reply to This | Parent ]

Re:One thing that is missing from "the spoof" (Score:2) by hobbesmaster (592205) on Friday June 27, @08:04PM (#6316012)

A local company to me, has a biometric scan + retina and thumbprint scan, but it also takes your body temp average/signature So if you catch a cold you can't even get into the building?

[ Reply to This | Parent ]

Re:One thing that is missing from "the spoof" (Score:1) by Axel Eble (685299) on Saturday June 28, @12:48PM (#6319823)

Consider it an enhancement: you are being sent home until you are well again. And you can't spread your cold. All in all, both you and your colleagues are better off.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:One thing that is missing from "the spoof" (Score:2) by Alsee (515537) on Saturday June 28, @03:29AM (#6318251) (http://slashdot.org/)

Again, if it's someone that can go through all three of those, they were going to get past the toughest of Indiana Jones hurdles. Tell me about it. It's damn exhausting hauling that boulder back up all the time. -

[ Reply to This | Parent ]

RTFA yourself (Score:5, Insightful) by MarcoAtWork (28889) on Friday June 27, @06:28PM (#6315473)

You don't understand what the article is talking about. When you enroll in a biometric system, the system itself -doesn't- match based on your picture, but on a 'template' which is created by taking your standard data and performing certain destructive operations to arrive to a much smaller 'template' which can still be used to identify you. This is very similar to the one-way hashing that happens with unix passwords, only that in this case the hashing is 'lossier' so you have 'confidence scores' instead of a black/white answer. The article shows that given this 'hashed' value you can recreate an image that has a good chance of not only being authenticated by the same system/algorithm (which already should be very hard, given the one-way nature of the templatization) =BUT= also by different systems! It also is really interesting how if you have access to the 'confidence score' outputted by the recognizer, you can take arbitrary images and blending/averaging them again come up with an image that works. This is definitely not useless news and will have quite some implications.

[ Reply to This | Parent ]

Re:RTFA yourself (Score:2) by randyest (589159) <(ranorano) (at) (hotmail.com)> on Friday June 27, @06:45PM (#6315584)

I guess this is a meta-meta-RTFA, but you seem to have missed a key point in the article (though you clearly read at least some of it -- kudos for that). The exploit requires both the template and (repeated) access to score results (i.e., the evaluation / matching algorithm). The template itself is insufficient as the exploit depends on iterative image manupulations and "hotter, warmer, cooler" feeback from the evaluation algorithm to work. So, although you seem to get this in your final paragraphs (though your "also" seems to imply that this is an additional, separate thing, while I read the FA to say the scores are an inherent need). In any case, your earlier statements don't seem to take this into account. Such as your UNIX password analogy, which would only be applicable if failed password entries gave you some quantitative feedback like "you're about 50% on that one", "nope, worse this time -- only 45% of a real password", etc. instead of a simple "sorry." or "invalid login".

[ Reply to This | Parent ]

Re:RTFA yourself (Score:3, Insightful) by dbrutus (71639) on Friday June 27, @07:09PM (#6315686) (http://www.roitgroup.com/)

Did you notice that nobody's using biometric systems that aren't also sold to companies. All you really need is to have a front company that says it needs a secure biometric company id system. The same people that sold the US their system will happily sell you an exact copy scaled down to one site. Once you own the system, you can run it to your heart's content. You can get data off of passports and create proper fakes at your leisure. Total cost for piercing the false security of the system? Way to little to be a barrier to ObL.

[ Reply to This | Parent ]

Re:RTFA yourself (Score:3, Insightful) by MarcoAtWork (28889) on Friday June 27, @08:30PM (#6316169)

I originally thought the same, but have a look at slide 15, the researcher says: 'Access to templates OR match scores implies access to biometric sample image' (emphasis mine) I originally thought that you needed both, but after re-reading the presentation a few times it seems the researcher has -TWO- different exploits, one which regenerates things from the biometric data (samples not shown) and the other which takes arbitrary pics and by using the match percentage iterates a few times until it finds something that passes. If I misunderstood and you need both things, please correct me.

[ Reply to This | Parent ]

Re:RTFA (Score:2) by deadsaijinx* (637410) <animemeken@hotmail.com> on Friday June 27, @06:50PM (#6315601) (http://kenbonilla.ath.cx/)

what do you mean lately?

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

So this means that spotty, streaky photo of me (or is it a dog .. a wombat maybe?) on the back of my CostCo membership card isn't safe! Just about anyone could march in the door, past their regorously trained staff and buy Boca Burgers for half off!

Someone showed me a fake driver's license made by a "novelty" company. The only distinguishable difference was a missing apostrophe in the text on the reverse. It had holograms and everything. Thoughtfully, the company stated, "This is only for amusement value, illegal to use as ID", etc. Yeah, that should cover it.

Re:Yikes! (Score:2) by shadowbearer (554144) on Friday June 27, @07:45PM (#6315920) (http://slashdot.org/)

"or is it a dog .. a wombat maybe?" Dude, you should have a serious conversation with your foks :-))) SB

[ Reply to This | Parent ]

(btw, I don't work for Sun)

A Java Card would allow you to store information (in this case biometric data) in a way that the data could be used in some sort of transformation but the original data is protected.

Were biometric data to be included on Passports, I see no better way to store it than in a Java Card. Portions of the biometric data analysis could be offloaded onto the Java Card itself, until an acceptable and mutual balance of trust and distrust can be achieved between the biometric processing algorithms and the data on the Java Card. In this way the biometric data is never exposed directly to the outside world, so one need not worry about it getting leaked to the "bad guys" even if your passport were stolen.

Re:The solution: store biometric data on a Java Ca (Score:2) by jetmarc (592741) on Friday June 27, @08:10PM (#6316042)

> In this way the biometric data is never exposed directly to the outside world, so one > need not worry about it getting leaked to the "bad guys" even if your passport were stolen. ..except of course, when the JavaCard can be used as an oracle by the attacker. Note that in the article they did not use any reference to the original image or to the dataset that the face recognition software creates from it. They rather chose 30 different (visually not related) images and then evolutionary selected the best fit. As soon as your JavaCard is going to be universal (and serve multiple purposes with varying degree of security) it has to return a "score" (rather than a yes/no decision). And nothing more than that very score is used by the attack, go figure. To put this into a real world example: imagine you use an ATM JavaCard with face recognition. Insert card, present your face into the cam lens, and enter how much money you need. Now a computer nerd "finds" your card. He emulates an ATM terminal to the card and presents a random face to the card. Recursively, he optimizes it according to the article until he achieves a "good enough" score. He prints that out on paper, and travels to Mexico - slowly, by car, doing a stop at every damn biometrics-enabled ATM he can find. Heck, even the security cam recordings provide no more evidence than a fake (still image) phantom photo of YOU! Marc

[ Reply to This | Parent ]

Re:The solution: store biometric data on a Java Ca (Score:2) by Cthefuture (665326) on Friday June 27, @10:18PM (#6316870)

As soon as your JavaCard is going to be universal (and serve multiple purposes with varying degree of security) it has to return a "score" (rather than a yes/no decision). Eh? I understand the part about being able to use a score to slowly converge on a working template, but that's not the way any smartcard I've seen works. I've never worked with a card that returned a score. The biometric template is instead used like a PIN, it either unlocks the card or not and the card determines that. When the card is unlocked it then authenticates in a traditional manner (usually a standard public key, RSA or whatever). In other words, the biometric template unlocks the private key. Note that no private data is ever read off the card, everything is done on-card. When you're talking smartcards, it's not the client application that determines the security level. Normally it's the card that determines if you've passed all the security criteria. Hence smart card.

[ Reply to This | Parent ]

you cant get a one-ace master template (Score:2) by QEDog (610238) on Friday June 27, @06:22PM (#6315429)

There is research proving this wrong: www.timecube.com "Time Cube proves a 1 face god impossible, due to 4 corner face metamorphic human - baby, child, parent and grandparent faces."

[ Reply to This | Parent ]

Re:you cant get a one-ace master template (Score:1) by ronaldb64 (633924) on Saturday June 28, @10:21AM (#6319191) (Last Journal: Wednesday June 25, @11:17AM)

Can somebody please moderate this as funny? If there is research on that website, it must be buried in the enormous flood of words that tells the reader how stupid they are if they don't accept that Gene Ray is the most intelligent being on earth. LOL.

[ Reply to This | Parent ]

Nah, it's just backasswards (Score:2) by Julian Morrison (5575) <(julian) (at) (extropy.demon.co.uk)> on Friday June 27, @06:21PM (#6315423) (http://fling.sourceforge.net/wiki/)

Means you can't identify a fake, starting from scratch, that gives a valid match to the "template". Only, now, turns out that you can after all.

[ Reply to This | Parent ]

Re:Am I reading the description incorrectly? (Score:2) by alizard (107678) <alizard@ecis.com> on Saturday June 28, @04:06AM (#6318346) (http://www.ecis.com/~alizard)

The people who make the decisions don't read the technical literature because they can't. They make decisions based on vendor presentations and canned demos. They also wonder why the stuff never works quite as well after they spend our money on it. Usually, they blame the IT staff they saddled with this crap to begin with. You don't like this? Vote for leaders who aren't lawyers.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:Sounds easy to fix... (Score:2, Insightful) by jonatha (204526) on Friday June 27, @06:57PM (#6315634)

Unlike all the *other* problems with biometrics, like false positives/false negatives/gelatin sheet spoofing, showing the camera a photograph, etc., this one seems like it should be easy to solve: don't store the biometric data, instead, treat it like a password and store a cryptographic hash of it instead. The paper explicitly covers encryption, etc., of the data. Any system that uses the data to decide whether or not the presented (fake) pattern matches the template is subject to this attack, i.e., hashing the data won't help.

[ Reply to This | Parent ]

Re:Sounds easy to fix... (Score:1) by eric256 (625188) on Friday June 27, @07:51PM (#6315954)

Actualy its saying that if you have access to the template (unencrypted) then you can reconstruct the image from that. Its also saying that if the system gives a % of how close you are then that can be used to average out an initial picture until it provides a close enough match. Both of these could be handled by one-way hashing the stored template and then only giving a yes/no answer. Though then the hash of a template generated by a persons image must be consitently perfect, so that everytime it id's you it recreates the template, hashes it, and searches for that in the dbase. I think some sort of video/infrared system would work better. Of course it would be much harder. Then you could weight there movement/facial expresions/temperature match. Much harder to fool than a simple image. After all you can't hold a picture up to an infared camera and expect it to work too well. Of course it should also be noted that any system can be broken, includeing ALL current identification systems. So its realy a matter of is this better or worse than our current methods. Just my thoughts.

[ Reply to This | Parent ]

Re:Sounds easy to fix... (Score:2, Informative) by robindmorris (682328) on Friday June 27, @07:03PM (#6315656)

If you bothered to RTFA (I know, this is /.), you would find that this exploit does not need access to the biometric data, instead it only needs access to the scoring function. Put simply: 1. start with some random face 2. ask the system to compute the recognition score for this face 3. make changes to the face 4. compute the new score 5. if the score is higher, keep the change to the face, if the score is lower, reject the change 6. goto 3 You'll notice that nowhere do you have to look at the biometric data itself. You only have to ask the system to compute the recognition score (for which it comes with a handy api). Actually, this idea is so brilliantly simple, that I'm annoyed that I didn't think of it myself (it relates closely to a bunch of work I've done on image reconstruction.

[ Reply to This | Parent ]

Re:Thank god! (Score:1) by robindmorris (682328) on Friday June 27, @08:04PM (#6316006)

Ah, mention the DMCA and get modded up... You don't need to break the law to exploit this. You only need to make api calls to the public api of the recognition system. It's all spelled out in the article.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Read the technical paper (Score:2) by alizard (107678) <alizard@ecis.com> on Saturday June 28, @04:09AM (#6318350) (http://www.ecis.com/~alizard)

Decryption isn't necessary, all the cracker needs to get is the "confidence level" that the image submitted to the sensors matches the image hash in the database. I don't think this can be worked around in any way that winds up with a usable product.

[ Reply to This | Parent ]

Re:Hash the data (Score:1) by robindmorris (682328) on Friday June 27, @07:05PM (#6315670)

As I said in a reply to an earlier comment: (cut and pasted...) If you bothered to RTFA (I know, this is /.), you would find that this exploit does not need access to the biometric data, instead it only needs access to the scoring function. Put simply: 1. start with some random face 2. ask the system to compute the recognition score for this face 3. make changes to the face 4. compute the new score 5. if the score is higher, keep the change to the face, if the score is lower, reject the change 6. goto 3 You'll notice that nowhere do you have to look at the biometric data itself. You only have to ask the system to compute the recognition score (for which it comes with a handy api).

[ Reply to This | Parent ]

Re:Hash the data (Score:1) by p3d0 (42270) on Friday June 27, @08:30PM (#6316165) (http://www.eecg.toronto.edu/~doylep)

I don't understand. What part of the problem would hashing solve? (Did you read the paper?)

[ Reply to This | Parent ]

He will be in the position of being assumed guilty because everyone know that biometrics don't lie and are completely infallable. Thanks to legislation like the DMCA, no one will testify that the systems are, indeed, very easy to compromise. It'll be illegal to talk about those aspects of security. Not that the law has ever stopped the black hats...

Re:Joe Average User... (Score:2) by Akardam (186995) on Friday June 27, @06:53PM (#6315615)

Testifying about the system's ease of comprimise is entirely different from trying to bust some guy with a cast iron alabi, and trust me, it will happen. All the sooner if it's someone high profile, like a congressmonkey or star athlete or actor. At that point, the system's falability will have to be questioned, and once it is, every case after will have the defense scrambling to cite Senator Bob vs. BioID Ltd.. This is also another reason why people will always remain in the identification equasion for the forseeable future, at least until a computer can say "Gee, Mr. Bob, you're a few inches shorter then whence I saw you last".

[ Reply to This | Parent ]

Re:Joe Average User... (Score:3, Interesting) by Poeir (637508) on Friday June 27, @09:39PM (#6316665)

Alphonse Bertillon advanced a system which would provide "unique" identification by taking measurements of various bones throughout the body. In 1903, two prisoners at the same facility were found to have almost identical Bertillion measurements, and the system was more or less scrapped. Modern facial recognition systems work in a matter similar to the Bertillion one, by comparing the ratio/measurement between various components of the face, like eyes, ears, nose, et cetera. Sir Francis Galton's work regarding fingerprints superceded the Bertillion system, and even that has shown some weaknesses [itworld.com]. Overall, biometrics do not appear to be as secure as one would expect to me.

[ Reply to This | Parent ]

Re:Biometrics 101 (Score:1) by michaeljthieme (685202) on Friday June 27, @09:46PM (#6316706)

This study is interesting, and there are probably some severe implications for vendors. However biometric templates are NOT going to be stored on passports. Biometric *images* are - definitely face, potentially also fingerprint and iris. ICAO (International Civil Aviation Organization) establishes these standards; they also determine the layout, data formats, etc of physical passports. A country can decide not to go along with ICAO recommendations but that is unlikely. So if one can read the data on the new "biometric" passports, one would be reading images, not templates.

[ Reply to This | Parent ]

Make the cameras use x-ray backscattering (as in the earlier story today) of your face. Then in order to spoof the system, a printout of your picture (generated from the hash or not) would not work -- you'd have to build something that recreates your x-ray backscatter and show that to the camera. (I'm assuming that would be much more difficult, like making a sculpture out of meat or something -- anyone in the know wish to shoot down my theory?)

Of course, then there's the issue of getting x-rayed in the face every time you walk in the door...

Re:How to fix the problem (Score:2, Interesting) by agrippa_cash (590103) on Friday June 27, @06:44PM (#6315576)

Or some face topography scheme (IR distance sensors etc...), or make people turn their head so that the computer has to validate x number of positions between a frontal and quarter profile. Thermal is too easy to fool. No doubt these methods also could be fooled and likely sucessfully reversed as well. But the more complicated the verification, the more complicated circumvention will have to be. It appears that the currenet scheme is easier to circumvent than impliment.

[ Reply to This | Parent ]

Sorry, not comparatively hard (Score:3, Interesting) by mattr (78516) <<moc.ydobelet> <ta> <rttam>> on Saturday June 28, @12:29AM (#6317504) (http://telebody.com | Last Journal: Tuesday July 30, @08:28AM)

Nope, check out this [3dsystems.com]. An associate of mine runs a small factory in Japan where they make 3d-printers, much of the technology is from Texas-based DTM. Can't find their homepage, I think they might be owned or were by BFGoodrich. Many companies use their Sinterstation, which uses a laser to fuse nylon or metal powder deposited in thin layers inside the production bay. The machines are I believe in the hundreds of thousands of dollars each but they are used to make prototypes like mobile phone shells, or molds as for experimental automotive parts. Anyway nylon is easy, but they also have a rapidsteel process and the holy grail I understand is titanium, which would allow you to create surgical implants like joint replacements. As you can see in the link above, you can already pretty easily produce a 3d model of your skull from Cat-scan tomography. I've only seen plastic versions, though they might be more appropriate to trying to mimic x-ray backscatter from bone, and much cheaper than going through the trouble of making a mold, pouring metal, and finishing it. Hospitals are probably a lot easier to penetrate than these biometric systems. Come to think of it, you could skip the biometric penetration and just use anthropological techniques to build a face over the skull based on known data about skin depth at different parts of the skull. Painting surface features based on a pictures taken with a telephoto lens would also be cheap compared to the price tag mentioned in this thread for biometric analysis equipment.

[ Reply to This | Parent ]

Re:Sorry, not comparatively hard (Score:1) by cesspool (258640) on Saturday June 28, @02:14PM (#6320231) (http://slashdot.org/)

If you were going to fool with that much money, why not an automated latex spraying chamber, input your desired face and the "3d printer" spits out a hollywood style latex face overlay.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

This isn't such a big deal for face recognition systems, because face recognition systems suck at identifying people anyway. Why? First a little tereminology:

With any biometric matcher you have to define a match "tolerance", which defines how close a pair of templates (usually one from a database and one from a livescan) have to be before they're considered to be a match. Set this tolerance too "loose" and you get lots of false positives (matches that shouldn't match), set it too "tight" and you get the opposite, false negatives. The tolerance setting where you get roughly the same number of errors each way is called the equal error point, and the error rate is called the equal error rate (abbreviated ERR for some unfathomable reason).

Well, all current face recognition systems have an ERR that is too high to be useful in nearly any situation, even when used for identity verification, as opposed to the much-harder problem of identification (verification: I say I'm Bill Gates, and the system agrees; identification: The system says I'm Bill Gates, not RMS or anyone else). It's possible that in the future this will change, of course.

However, this doesn't really matter because we already have ready access to an excellent and very widely available face recognition system: the Mark I eyeball. Millions of years of evolution have made people extremely good at identifying and matching human faces. What people aren't so good at (with notable exceptions) is matching a face against a database of thousands of faces they've seen only once, and *that* is something that face recognition systems can do extremely well. They may not be able to decide which faces are a "match", but they can do an excellent job of finding the *closest* faces, which can then be reviewed by the super-duper face-matching algorithm contained in the average person's head.

When automated face recognition is used in that sort of context, spoofs like this one are unlikely to be very useful; if you want to impersonate someone you'd better get a face that's good enough to fool another human. It's doable, certainly, but much harder. And holding a laptop screen in front of your face is likely to raise some suspicions.

Re:Not as significant as you might think (Score:2) by Jasin Natael (14968) on Saturday June 28, @06:28PM (#6321590)

Yeah, yeah. That's what they said about handwriting. Oh, wait. They were right. Maybe I'm agreeing with you. Just like my beloved Apple Newton -- It got the handwriting right 98% of the time, but for the other 2%, you'd find yourself double-tapping the word to see what else it thought you might have written. I'd be surprised to learn that this isn't the way most firms are implementing the technology. After all, "Blocks more than 98% of intruders" isn't a great advertising slogan unless you plan to use another system to back up that 2%. To sum up: You'll probably see it used in non-critical places (like advertisements), as supplementary ID (like at an ATM, but you'll still need your PIN), and as an entertainment enhancement (your TV recognizing who's in the room and recommending shows everyone is likely to enjoy). Just don't use it to lock your car, and certainly don't deploy it at work unless there's a real brain behind it. --Jasin Natael

[ Reply to This | Parent ]

Re:Yo' Mama's So Ugly... (Score:2) by shadowbearer (554144) on Friday June 27, @07:48PM (#6315933) (http://slashdot.org/)

Yo mama's so ugly, the T1000 broke down and cried... :-) SB

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:One to one relationship / pigeonhole principle (Score:2) by awol (98751) on Friday June 27, @07:44PM (#6315913)

Much like a hashing algorithm (and the pigeonhole principle) if two items can hash to the same spot, then the algorithm is broken; or in this instance two people look alike and the computer can't tell them apart. Er, actually no. Hashing two templates to the same key is not evidence of a broken algorithm as long as some of a whole range of other factors can be used to "work" the collision. In particular you want the algorithm to return an even distribution accross the key space and even more particularly yuou do not want similar faces to hash to similar keys, that is a sign of a potentially broken algorithm. The trade off is keyspace size versus computational complexity (and the range of factors like non stochastic key mapping and keyspace coverage). So for example if you hash the faced independent of skin colour, and eye colour (not the best but what the hey) then when you got the collision you could store those metrics with the template to allow for the more detailed comparison to be performed. Thus if dissimialr faces hash to the same key, you could easily have a factor of ten in the keyspace and still easily identify different faces. Having said that, the discovery of the hashing process is where the difficulty lies and that ain't my area.

[ Reply to This | Parent ]

Re:One to one relationship / pigeonhole principle (Score:2) by zerofoo (262795) on Sunday June 29, @02:51PM (#6325948)

I agree the algorithm isn't necessarily broken. Every hash i've ever coded needs some way to handle collisions. The difficulty is getting that elusive differentiating data from a face. Obviously if a human can tell apart two faces, then there must be a way to create two different facial templates. The article shows that the reverse is true. The authors could reconstruct the face from an image template. I didn't go deeply into the math, but it does actually look like a one to one process (i.e. one template did not result in two possible images). -ted

[ Reply to This | Parent ]

Re:One to one relationship / pigeonhole principle (Score:1) by p3d0 (42270) on Friday June 27, @08:35PM (#6316205) (http://www.eecg.toronto.edu/~doylep)

Wow, that statement is so ridiculous, I don't even know where to begin. You armchair computer scientists need to give the researchers just a little credit, and benefit of the doubt, especially if you haven't read the paper.

[ Reply to This | Parent ]

For instance, if she had a little less facial hair, my aunt's bouffant hairdo under a scarf might give her the same biometric as Osama bin Laden.

Re:Frequent changes... (Score:2) by The Creator (4611) on Saturday June 28, @07:28AM (#6318751) (http://cult.freehosting.net/)

Well, you are supposed to change your password often.

[ Reply to This | Parent ]

Re:has the professor been arrested... (Score:2) by JohnnyCannuk (19863) on Friday June 27, @08:42PM (#6316256)

American law, Canadian researcher. Figure it out.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.

Re:Gee (Score:2) by swordgeek (112599) on Friday June 27, @07:36PM (#6315864) (Last Journal: Monday May 05, @07:46PM)

Great. And then we'll go back to the OLD method, of recreating faces from pictures of people. Visual or at least optical biometrics are a disaster. Anyone (including government agencies) who think otherwise will end up getting in trouble by it.

[ Reply to This | Parent ]

Re:Gee (Score:1) by eric256 (625188) on Friday June 27, @07:57PM (#6315978)

Heres an idea that just occured to me. Use two cameras in tandem, spaced a couple inches apart to give you a depth analysis as well. Harder to fool, and you can't just use a picture. It would have to be a full blown model. Or even better. Dual Cameras with Optical and Infared Capabilities (and audio) captureing the person saying a pass phrase "I am joe." One-way Hash all the data into the system and use that. You could even hash the audio and video seperate so that a head injury or a cold wouldn't lock you out, or just have a guard to let those people pass. Well you get the idea. Any thoughts?

[ Reply to This | Parent ]

Re:Gee (Score:1) by spydir31 (312329) * <hastur@h a s t u r k un.com> on Friday June 27, @08:06PM (#6316021) (http://www.hasturkun.com/)

Use two cameras in tandem, spaced a couple inches apart to give you a depth analysis as well. Harder to fool, and you can't just use a picture. It would have to be a full blown model. Ever seen one of those three dimensional prints, the ones that use refracting plastic triangles to split the image?

[ Reply to This | Parent ]

Re:Gee (Score:1) by eric256 (625188) on Monday June 30, @01:25AM (#6328702)

3 dimensional print?? like a hologram. I don't understand. Do you have more info? a link?

[ Reply to This | Parent ]

Re:Gee (Score:1) by spydir31 (312329) * <hastur@h a s t u r k un.com> on Monday June 30, @03:19AM (#6329008) (http://www.hasturkun.com/)

sorry, couldn't find anything It's just a picture, printed in strips, with trianglar plastic lens over them to give stereo seperation.

[ Reply to This | Parent ]

Re:Gee (Score:1) by eric256 (625188) on Monday June 30, @11:05AM (#6330874)

Ah. Yea I heard about those a while back. Frensel lenses basicaly. Yea I suppose that would fool it. Thats why I also included thermal imageing. (maybe a different post.) Either way any system is foolable. Its just a question of how bad it is. :-)

[ Reply to This | Parent ]

Re:How to beat a fingerprint scanner (Score:1) by swordgeek (112599) on Friday June 27, @07:33PM (#6315848) (Last Journal: Monday May 05, @07:46PM)

Lifting fingerprints from a fingerprint scanner? I'm afraid that they're not quite the clear smooth glasslike surface that would make such an idea feasible. If a system lets something like this by, then it's a broken system. That's all.

[ Reply to This | Parent ]

Thank you (Score:1) by p3d0 (42270) on Friday June 27, @08:39PM (#6316234) (http://www.eecg.toronto.edu/~doylep)

Finally, the voice of sanity. From someone who apparently read the paper. Someone give the man some mod points.

[ Reply to This | Parent ]

Re:Everyone has missed the point (Score:1) by stupendou (466135) on Friday June 27, @09:35PM (#6316643)

The whole point is that this shows that biometric templates are privacy-sensitive. Previously it was thought that they could be stored and promulgated without interfering with anyone's privacy, because it was thought to be infeasible to start from the template and reconstruct personally identifiable information about the subject. No one in the biometrics industry ever thought that!

[ Reply to This | Parent ]

Re:Simple algorithm. It works. (Score:1) by stupendou (466135) on Friday June 27, @09:33PM (#6316625)

>Biometrics is something you have, not something you >know. That is > the key thing to learn here! No. Biometrics is something you *are*. A card or other token is something you have. A password is something you know. They are all distinct and can all be used together.

[ Reply to This | Parent ]

Re:Simple algorithm. It works. (Score:3, Insightful) by FreezerJam (138643) <smith@canada.com> on Friday June 27, @11:55PM (#6317324)

>No. Biometrics is something you *are*. >A card or other token is something you have. Your finger and your face are "something you are". But the biometric is something you have. I can't "be you". But I can have your measurements. You are not your measurements.

[ Reply to This | Parent ]

Re:Simple algorithm. It works. (Score:1) by ksni (684287) on Saturday June 28, @02:17AM (#6318010) (Last Journal: Tuesday June 24, @04:42PM)

I beg to differ on the point: "A biometric dataset can possibly replace a physical token, but it can NOT replace a PIN code." A UK based ATM implementation using IRIS technology used cards with no pin and worked very well. The token is the the 'involved party' indentifier that provides context and limitation for iris presentation.

[ Reply to This | Parent ]

Re:Easily fixed (Score:1) by NivekEnterprises (309259) on Friday June 27, @08:10PM (#6316046)

If the picure is held up in front of a persons face, or some other heat emitting object, then you would get heat. Not that easy of a fix

[ Reply to This | Parent ]

Re:Easily fixed (Score:2) by afidel (530433) on Friday June 27, @08:43PM (#6316262)

Only where there is contact, and if you mold the image to contact your face in more places you distort it to the point that it no longer matches the image map.

[ Reply to This | Parent ]

Re:Easily fixed (Score:1) by NivekEnterprises (309259) on Saturday June 28, @11:01AM (#6319335)

Depending on the syphistication of the machinery you are probably right, but you could keep the paper up against your skin (e.g against your stomach) and when you pull it out to show it to the copmuter it would still have the heat from your body.

[ Reply to This | Parent ]

Re:Easily fixed (Score:1) by p3d0 (42270) on Friday June 27, @08:41PM (#6316251) (http://www.eecg.toronto.edu/~doylep)

In future, please at least read part of the paper before you start the armchair comp sci routine. Honestly, yours is not a bad idea, but it's totally unrelated to the paper.

[ Reply to This | Parent ]

Re:Easily fixed (Score:2) by afidel (530433) on Friday June 27, @09:05PM (#6316467)

I did read the paper, my solution solves the first problem presented (outwitting the system) but does not solve the second. The second is really less of a real world problem because most systems store an actual photos and other information about a person, not just their ID mask. Compromising the database in those cases would give much more than trying to reverse the algorithm to get a rough picture of a person.

[ Reply to This | Parent ]

Re:Easily fixed (Score:1) by p3d0 (42270) on Friday June 27, @09:53PM (#6316743) (http://www.eecg.toronto.edu/~doylep)

Ok, now that's more like it. :-)

[ Reply to This | Parent ]

Re:Not Surprising In Ottawa (Score:2) by JohnnyCannuk (19863) on Friday June 27, @08:49PM (#6316334)

Flamebait? As a resident of Ottawa, I can say this is true...really! It's actally rather insightful. From January to March here your only like to see the tip of someone's nose, as the rest of your face is (and should be) covered by parkas, touques, belaclavas or scarves. Facial recognition biometrics would never be used here for that very reason

[ Reply to This | Parent ]

Re:Not anything like a password hash (Score:2) by WNight (23683) on Saturday June 28, @07:08PM (#6321787) (http://slashdot.org/)

The problem is that passwords are an all or nothing. "google" works "goofle" does not. There's no hint. Biometric systems however supply a score. If password systems did this you crack then like this... If the password is "aaaa" and you first try "mmmm" it'll (let's say) give a score of 50. So you try "mmma" and "mmmz" and see which one gives the highest score. The first would give 62.5% and the second would be 37.5%, so you'd stick with the first and you'd make another change. With biometrics this is like showing it a standard face and getting a score. Then raising the cheekbones and trying again, then widening the nose, and so on. See how to change things to get closer to a match. You know how they crack ATM codes in the movies? Where all the numbers change randomly, but then they "get" a digit, and then another, etc... Passwords don't work this way because there's no way to tell if a given character is correct without getting the whole thing right. Biometrics let you solve a piece at a time. What this is equivalent to is the master-key problem from a month or two ago.

[ Reply to This | Parent ]

And, as luck would have it, the rest of the world is very satisfied with you not having any intention of travelling outside of the US.

Re:I don't have one, do you? (Score:1) by NotQuiteReal (608241) on Friday June 27, @08:10PM (#6316038)

I have a passport, but it is long expired. Without the passport, I have been to Canada, Mexico and the Bahamas. I suppose there are places I might like to go to that require a passport, but there are far more that require a passport that I have no desire to visit. Meanwhile, plenty of people visit and permenantly inhabit my state (California) without out passports from their (non-USA) countries of origin just fine.

[ Reply to This | Parent ]

• 1 reply beneath your current threshold.