If the phone is storing a copy of the fingerprint in any way that remote hackers can obtain it, there’s a big problem with the implementation. And in fact that’s exactly what happened in some of HTC’s implementations – they left an image of the user’s fingerprint sitting in a public directory on the phone, essentially. In a better implementation, like Apple’s or (I believe) Samsung’s, there isn’t any way to remotely steal the user’s fingerprint because it never exists in the phone memory.
Android has only actually had official support for fingerprint scanners since Android 6.0 (Marshmallow) came out. Before that, it was up to the phone manufacturer (HTC or Samsung or Motorola or whoever) to implement it themselves, and apparently they don’t always do a good job with that kind of thing.
I often like to use my Bluetooth fingerprint scanner to let people scan their prints and show them actual images of the fingerprint the phone. It’s a good marketing stunt, since people like to see visual representations like that, but nobody has ever asked me if the app is saving those images. (It’s not.)
Any method of storing a fingerprint is always a “Mathematical representation”. Raw scan, jpeg, whatever. Saying something is a Mathematical representation is a completely meaningless phrase in this context. It’s no different than saying it’s “stored in bits” or some such.
You’d be astonished what crypto experts are able to divine from supposedly encoded data.
The fingerprint data has to be able to be written and read. While a manufacturing might take extra steps to prevent simple reading of it, there are always holes. Who knows if someone has found a hole to get the fingerprint from secure storage? Security is even less likely if the entire system hasn’t been publicly vetted.
You just can never trust a company’s security claim on its own.
6 month old iPhone. Fingerprint recognition works flawlessly. About 1/3rd of my POS transactions these days are Apple Pay where I just wave the sleeping, locked phone and touch the fingerprint pad. Many but not all apps which should be locked all the time like 1Password or my bank app get unlocked via fingerprint as well. Some apps for purchasing things use Apple Pay via fingerprint as well.
I really hope this sort of thing ends up replacing credit cards entirely at some point.
Actually I have 10 fingers each with a different fingerprint. In the unlikely case that one of my fingerprints was “hacked” on my phone I’d just delete that fingerprint from the phone and use a different finger.
While more complicated than simply encrypting stored passwords using a one way hash function, I’d hope that something similar is being used for the fingerprints.
E.g. the original fingerprint is encrypted via one direction encryption and stored. The current fingerprint is encrypted using the same method. Encrypted versions are compared.
The biggest problem I have with Touch ID is that I have it on my iPhone but not my iPad. If I haven’t used the tablet in a while, I usually forget and try to unlock it with a fingerprint.
I’m a big fan of touch-to-unlock, and rarely have problems with it.
Sent from my iPhone using Tapatalk
Unfortunately it can’t work that way because the fingerprint reader doesn’t produce the exact same bit-for-bit identical image every time it scans a finger. The software needs to do a fuzzy match on the two images to see if they are similar, not identical. Hashing would not allow that kind of matching. It works for passwords but not for images.
Likewise on my Galaxy S7. I tried it the first day, took me 3 tries to get it unlocked after I set my thumbprint. I disabled the feature out of fear of locking myself out of my own damn phone.
A trivial google revealed plenty of white papers on fuzzy comparisons of fingerprints after the application of non-invertible transforms. I don’t know that Apple does it this way, but there is both a theoretical basis and working models for it.
That doesn’t solve the problem, though, it just delays it. You are going to run out of fingers at some point, and then what?
My guess is that the issue of not being able to change your biometrics will be solved by ever-higher resolution scanners. Sure, you can’t get a new retina or fingerprint to scan, but if the next generation of scanners can pick up things that the previous generation didn’t, then it should be able to stay ahead of the copies for a while. So, biometrics will be subject to cat and mouse tactics and arms races just like pretty much every other security technology.
I also expect that the severed finger/eyeball risk will remain slim. When I go to doctor, they put a little thing on my finger that measures my blood oxygen content with light transmission. Surely it’s not that hard to make a scanner that can tell if the finger/eyeball is attached to a live body.
I still don’t understand what the supposed threat is.
Having your fingerprint doesn’t do a hacker any good, unless he also has your phone.
If you get your phone stolen, you can wipe it remotely, certainly long before anyone would be able to print a copy of your fingerprint and unlock it.
Also, 99.99% of phones are stolen to re-sell. Only people like James Bond need to worry about a targeted attack.
Well, despite that Rachellelogram and markn+ have had the same experience as I, you guys have inspired me to try it again. I’m not optimistic, though. When I’ve tried it before, I have registered my print multiple times, and it works at first, but it’s a gradual decline. After a few days, it starts taking several tries, then it gradually starts taking more and more tries with each passing day, until eventually it doesn’t work at all. I think I get a little dry skin, the skin on my fingertips gets a little flaky or something, and the print is just too different.
The use of fingerprint biometrics will probably not be limited to phones, though. And now that someone has your fingerprint data, not just your current phone, but everything that will ever be secured by your fingerprint is at risk.
Yes, right now only James Bond needs to worry about a targeted attack. But you’re not considering the future. Right now, on the internet, people are buying and selling huge databases of credit card numbers and ATM card numbers and pins and social security numbers and tax return information. All of which can be used to commit fraud. But at least we can get new numbers for all those things, which makes the old data not useful for fraud.
Can’t get new fingerprints. So if your fingerprint is stolen once, then it’s stolen forever.
If you travel internationally, your fingerprint is probably on file in every country you’ve visited in the last few years (and will visit in the future). How comfortable would you be giving all those governments your phone password as a requirement for entry? And, not just one that’s good on your current phone, but every phone you’ll ever have.
The big advantage of having a fingerprint reader is that it makes it easy to have reasonable protection on your device, while still being able to unlock it quickly.
Does it give you high security? No. As many have noted, it’s possible to lift a fingerprint and fool the fingerprint reader.
Nevertheless, for the vast majority of people, it’s good enough security. And it’s so easy to use that you might as well use it…unlike, say, a good passphrase, which makes it such a pain in the ass to unlock your phone that most people won’t bother.
I have had exactly three experiences with fingerprint identification:
At a contract at Microsoft, my phone used fingerprint security. I slowly swiped my fingertip over the scanner a few times to “train” it, then swiped my fingertip to use the phone. That worked OK.
At a contract at Dish Networks, the entryway into the building used both card scanners and fingerprint scanners. I “trained” the system in the guard station office while I was getting my picture ID. That took a lot longer than usual, trying different fingers, until they found one that “worked.” We were supposed to use the fingerprint scanner first, and then swipe our card, but that never worked for me, so I started swiping my card first, reducing the time it took me to get in the building to (usually) under a minute.
At my current contract, we have a snack sales system that can use either our card or our fingerprint. I never have to remember to bring my fingerprints with me, so that is what I use most often. Scan my purchase, tap the “Account” icon, the position my thumb over the scanner. “Account not found.” Reposition thumb on scanner. “Account not found.”
