Brute-Forcing a Fingerprint Reader | allinfosecnews.com

May 30, 2023, 11:16 a.m. | Bruce Schneier

Schneier on Security www.schneier.com

It’s neither hard nor expensive:

Unlike password authentication, which requires a direct match between what is inputted and what’s stored in a database, fingerprint authentication determines a match using a reference threshold. As a result, a successful fingerprint brute-force attack requires only that an inputted image provides an acceptable approximation of an image in the fingerprint database. BrutePrint manipulates the false acceptance rate (FAR) to increase the threshold so fewer approximate images are accepted.

BrutePrint acts as an adversary …

academic papers attack authentication brute brute-force brute-force attack cracking database fingerprint fingerprints hard password password authentication reader reference result smartphones what is

More from www.schneier.com / Schneier on Security

Friday Squid Blogging: Baby Colossal Squid 1 day, 15 hours ago | www.schneier.com

baby blog blogging can +7

How AI Will Change Democracy 2 days, 1 hour ago | www.schneier.com

artificial artificial intelligence aspect change +13

Supply Chain Attack against Courtroom Software 3 days, 1 hour ago | www.schneier.com

application attack backdoor backdoors +20

Privacy Implications of Tracking Wireless Access Points 4 days, 1 hour ago | www.schneier.com

academic papers access access points address +26

Lattice-Based Cryptosystems and Quantum Cryptanalysis 5 days, 1 hour ago | www.schneier.com

algorithms coming competition computers +19

Friday Squid Blogging: Dana Squid Attacking Camera 1 week, 1 day ago | www.schneier.com

blog blogging camera can +9

On the Zero-Day Market 1 week, 2 days ago | www.schneier.com

academic papers adversaries cyberespionage global +8

Personal AI Assistants and Privacy 1 week, 3 days ago | www.schneier.com

ai assistants ai-powered artificial intelligence assistant +22

Unredacting Pixelated Text 1 week, 4 days ago | www.schneier.com

redaction steganography text

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com