Hackers Use a Fake Wax Hand to Fool Vein Authentication Security - Big Bear Safety & Security Management

By Porter, Jon

Researchers have used a fake hand made out of wax to bypass Hitachi and Fujitsu scanners that cover about 95 percent of the vein authentication market.


Jan Krissler and Julian Albrecht copied their target’s vein layout from a photograph taken with an SLR camera modified to remove its infrared filter.


Although constructing the wax hand eventually only required a single photograph and a construction time of 15 minutes, it took 30 days and more than 2,500 test photos to get to that point.


Image: Krissler, Albrecht

Krissler and Albrecht demonstrated the method at Germany’s annual Chaos Communication Congress. Now that the method has been proven to work, other researchers will likely work to create a more efficient and reliable process.


Vein patterns are considered to be more secure than imprints of fingerprints because they can not be left behind on surfaces just by touching them. Vein authentication is used to control access to buildings. However, vein scans are not currently used in any mainstream smartphones.

See Full Article : The Verge