A speaker at the yearly conference of the Chaos Computer Club has shown how fingerprints can be faked using only a few photographs. To demonstrate, he copied the thumbprint of the German defense minister.
Jan Krissler, also know by his alias “Starbug,” told a conference of hackers he has copied the thumbprint of German Defense Minister Ursula von der Leyen. Speaking at the 31st annual conference of the Chaos Computer Club in Hamburg, Krissler highlighted the dangers in relying on security technology.
Krissler explained that he didn’t even need an object that von der Leyen had touched to create the copy. Using several close-range photos in order to capture every angle, Krissler used a commercially available software called VeriFinger to create an image of the minister’s fingerprint.
Along with fellow hacker Tobias Fiebig, Krissler has been working at the Technical University of Berlin on research into weaknesses of
MasterCard has outlined plans for a new authentication standard designed to end the use of passwords in online payments, saying that the protocol could be released as early as next year.
The firm says the new standard, which is being developed in cooperation with Visa, will move security infrastructure beyond the PC era, “supporting emerging technologies and changing consumer needs”.
The new protocol could be adopted in 2015 and will gradually replace the current 3D Secure protocol. “[R]icher cardholder data … will result in far fewer password interruptions at the point of sale”, said MasterCard.
In the event that an authentication challenge is needed, cardholders will be able to identify themselves with the likes of one-time passwords, or fingerprint biometrics, rather than committing static passwords to memory.
“All of us want a payment experience that is safe as well as simple, not one or the other. We want to Read more…
The ‘Black Friday’ attack was a sophisticated, pervasive form of credit card skimming. It was also widespread sweeping consumer details across Target’s 2,000 stores in North America. The point-of-sales breach, likely the result of an email phishing attack on Target’s back-end system, was a big blow the store’s holiday sales and goal to increase it’s online presence, which has stagnated at 2 percent of gross sales.
Collateral damage of the Target attack includes JP Morgan Chase, which had 2 million customers—10 percent—affected by the data breach. As an extra layer of security, Chase has limited customer debit cards to $100 per day, ATM withdrawals, and $300 for debit purchases. All of Target’s bad news and Chase’s consumer restrictions come in the last week of holiday shopping. Chase isn’t the only bank involved.
Public sentiment has been downright negative to “I will never shop at Target again.”
Let’s see what Chase customers think of $100 daily limits. Try going out on town for two on that money. So who can consumers trust with their credit cards and personal information?
It appears no one.
Target’s ripple affect will go beyond the three class action lawsuits, lost revenue, and Full Article Here
CAMERAS are strewn around our environment, catching glimpses of our faces everywhere we go, yet even the best facial recognition technology still has a hard time picking us out of the crowd.
So the US government’s Intelligence Advanced Research Projects Activity (IARPA) has called for a new approach. The agency announced a contest on 8 November, challenging teams of the country’s top researchers to revolutionise how machines recognise people. Those entering the competition already know that conventional facial recognition won’t cut it.
The usual approach to identifying people is to sift through camera footage frame by frame, find a few that offer the best chance of an ID, and then attempt to match them to a database of known images. Ideally, this will mean the subject is Read more…
Biometric authentication technology is vital in security, especially at airports, due to unauthorised immigration and terrorism
Biometric authentication is finding more and more parts of the human body to prove we really are who we say we are. But will it ever fulfil the promise of so many sci-fi representations? And will it ever be worth pursuing in preference to simpler checks?
They are at once unique and universal, and for decades they have been the focus of efforts to improve security, personal identification, and even access to electronic devices. Our biometrics – from brain physiognomies down to the characteristics of locomotion or gait – can in theory differentiate one individual from another, and the study of how best to sort between them has resulted in Read more…
The grand plan for Global ID is to give each person on the planet a way to identify themselves online. One ID number for each person, to signify all that they are. This is the full personal profile containing anything relevant for identification purposes. It means all our private details being managed by a corporation, in the cloud.
And if you don’t want anything to do with it, it’ll be tough, if not impossible, to get by in the future, because you’ll have to use your global ID to access all government services and healthcare services, to drive a car, and, once cash is gone, to pay for anything. Given the atmosphere of mistrust engendered by the system, and the constant fear of terrorism, over time it’s likely you’d need to ‘validate your identity’ to get Full article here
Around the world, systems of identification that employ automatic recognition of individuals’ faces, fingerprints, or irises are gaining ground. Biometric ID systems are increasingly being deployed at international border checkpoints, by governments seeking to implement national ID schemes, and by private-sector actors. Yet as biometric data is collected from more and more individuals, privacy concerns about the use of this technology are also attracting attention. Below are several examples of the year’s most prominent debates around biometrics.
- FRANCE: In early March, the French National Assembly (Assemblée Nationale) passed a law proposing the creation of a Read more…