LOL So much for Apple's touch ID "security"

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Zaap

Zaap

Diamond Member
Jun 12, 2008
7,162
424
126
silverpig said:
Well because your phone has your fingerprints all over it of course.
Click to expand...
Yes, of course, in pristine condition, no smudges, or prints on top of prints. Just a guaranteed perfect print of just the finger needed, all ready for that 2400dpi scan.

I'd be impressed if the hackers did this with whatever random latent prints just happened to be all over the phone, but I doubt it.
 
lopri

lopri

Elite Member
Jul 27, 2002
13,314
690
126
tvdang7 said:
As much as I think this is funny ,android did have the whole face unlock thing where people would just use another person's picture and unlock it.......
Click to expand...

There is an option to add an additional layer by winking. ;)
 
Zaap

Zaap

Diamond Member
Jun 12, 2008
7,162
424
126
silverpig said:
To make your analogy more accurate: you always leave your key in the wheel well. And on the windshield...
Click to expand...
You're right, this is actually a *perfect* analogy.

Because either thing is just about the perfect setup for a would be thief... and EQUALLY about as likely for the stars to align and actually happen in reality.
 
L

lothar

Diamond Member
Jan 5, 2000
6,674
7
76
senttoschool said:
What's stopping someone from torturing you until you tell them your password?
Click to expand...
There is hope that the person is smart enough to realize that even if he tortures me to death, he still won't get my password...unlike my finger print.
 
J

jiffylube1024

Diamond Member
Feb 17, 2002
7,430
0
71
Where exactly are you hanging out where people are taking super high DPI pictures of your fingertips without you knowing?
 
Zodiark1593

Zodiark1593

Platinum Member
Oct 21, 2012
2,230
4
81
thedosbox said:
Um, you're missing the point. Despite apple's hype, it can be circumvented using a similar technique first demonstrated five years ago.

One dose of Rohypnol later and any accounts you were relying on your fingerprint to secure are up for grabs. Though granted, you might have some more serious problems to worry about in that scenario ;)
Click to expand...
Not to mention a missing finger, or three. :sneaky:
 
B

beginner99

Diamond Member
Jun 2, 2009
5,318
1,763
136
NoStateofMind said:
http://www.phonearena.com/news/Euro...round-the-Touch-ID-on-Apple-iPhone-5s_id47653


There goes that. So the big "upgrade" for iPhone 5s is....camera? :(
Click to expand...

Gun to head and saying

"Unlock your phone"

should do the trick too...and will always be the easiest method that can be done by the most computer illiterate criminals.

And if you aren't cleanign your screen like 10 times a day getting your unlock code or gesture isn't really hard either, smudges...the fingerprint scanner actually wins here. And note that I notoriously hate apple. Just being realistic here.
 
Qbah

Qbah

Diamond Member
Oct 18, 2005
3,754
10
81
The access path becomes unavailable after 48 hours of not being unlocked.
The right fingerprint is needed. Or any other body area that's used - it might be hard...
It's a convenience thing for people who have a lock code.
It was never touted as the ultimate security measure - but rather another way to unlock your phone.

I find people who are laughing at Apple right now, funny. Everybody knows fingerprint scanners can be circumvented. So does Apple. And the functionality was never advertised as the next generation of iPhone security... but as another, more convenient way to unlock a password-locked iPhone. Or validating purchases in iTunes. That has a 48 hours timer each time it's used.
 
colonelciller

colonelciller

Senior member
Sep 29, 2012
915
0
0
Zaap said:
Seriously? Someone actually qualifies that as an actual security breach?

So I guess iPhone 5S owners should be weary of strangers who want to "borrow" their iPhone while taking 2400 dpi scans of their fingerprints. *eyeroll*

This is like reporting that my car's security is compromised because all someone has to do is steal my key, make an exact duplicate of it... no wait, in fact, that's actually far more likely to happen in reality.
Click to expand...

the fingerprint data is stored on the device that will be stolen.
how long until that is hacked wide open...

and yeah, people hold phones in their hands... often leaving fingerprints on the phone. it doesn't take a genius to figure that out
 
colonelciller

colonelciller

Senior member
Sep 29, 2012
915
0
0
Qbah said:
The access path becomes unavailable after 48 hours of not being unlocked.
The right fingerprint is needed. Or any other body area that's used - it might be hard...
It's a convenience thing for people who have a lock code.
It was never touted as the ultimate security measure - but rather another way to unlock your phone.

I find people who are laughing at Apple right now, funny. Everybody knows fingerprint scanners can be circumvented. So does Apple. And the functionality was never advertised as the next generation of iPhone security... but as another, more convenient way to unlock a password-locked iPhone. Or validating purchases in iTunes. That has a 48 hours timer each time it's used.
Click to expand...
point is that people are using their highly personal fingerprint biometrics and wasting the potential use of that biometric FOREVER in order to "lock" a low value plastic toy. Apple amassing everyone's fingerprint biometrics is an Orwellian stupidity as well.

people must either not read the news, or they don't understand its implications. massive fail any way you slice it
 
WelshBloke

WelshBloke

Lifer
Jan 12, 2005
33,083
11,264
136
Qbah said:
...
It's a convenience thing for people who have a lock code.
It was never touted as the ultimate security measure - but rather another way to unlock your phone.

I find people who are laughing at Apple right now, funny. Everybody knows fingerprint scanners can be circumvented. So does Apple. And the functionality was never advertised as the next generation of iPhone security... but as another, more convenient way to unlock a password-locked iPhone. Or validating purchases in iTunes. That has a 48 hours timer each time it's used.
Click to expand...


That's what I said until someone pointed out that Apple themselves tout it as a "highly secure" method.

TBH I see it as a convenient way to quickly unlock your phone while avoiding getting fraped down the pub. It's on a similar level to a pattern unlock or face unlock.
 
AViking

AViking

Platinum Member
Sep 12, 2013
2,264
1
0
This is stupid. Honestly if someone needs the data on your phone that bad they're going to go about it in a completely different way.
 
Stuka87

Stuka87

Diamond Member
Dec 10, 2010
6,240
2,559
136
silverpig said:
You guys are completely missing the point.

With other phones, I need your phone and your PIN to gain access. With the 5s, I just need your phone.

Why?

Well because your phone has your fingerprints all over it of course. Apple has basically just invented a system whereby you leave your PIN written on a sticky on the back of your phone. A PIN you can't change.
Click to expand...

Having the finger prints on the phone may not work. In the process that was used in the link they had to take a photo of the finger itself. Not of a transfered finger print, which is much less detailed.
 
M

MrX8503

Diamond Member
Oct 23, 2005
4,529
0
0
thedosbox said:
Seriously? You don't see a problem using something that you cannot change as a key once it's stolen?
Click to expand...

You can lock your phone with activation lock. Everyone moaning about this touch ID, wishes they had this on their device.

If you don't like it, there's always the 4 digit pass code.
 
Eug

Eug

Lifer
Mar 11, 2000
24,134
1,784
126
Zodiark1593 said:
Not to mention a missing finger, or three. :sneaky:
Click to expand...
Actually, it supposedly doesn't work properly with severed fingers. The gun-to-the-head method or else the pressing-the-finger-against-the-sensor-while-the-victim-is-drugged method would both work better.
 
Oyeve

Oyeve

Lifer
Oct 18, 1999
22,066
882
126
Did apple fix the home button not responding issue? I know on my old iphone 4 the button would stop responding and either you had to press really hard or reboot the damn thing. Would suck if that issue was still around while trying to finger unlock the phone and pressing hard fubarded the finger scanner.
 
Eug

Eug

Lifer
Mar 11, 2000
24,134
1,784
126
Oyeve said:
Did apple fix the home button not responding issue? I know on my old iphone 4 the button would stop responding and either you had to press really hard or reboot the damn thing. Would suck if that issue was still around while trying to finger unlock the phone and pressing hard fubarded the finger scanner.
Click to expand...
Is that a hardware issue or a software issue?

I have not encountered that issue on the iPhone 4 (or 3G for that matter).
 
Oyeve

Oyeve

Lifer
Oct 18, 1999
22,066
882
126
Eug said:
Is that a hardware issue or a software issue?

I have not encountered that issue on the iPhone 4 (or 3G for that matter).
Click to expand...

I dont think its ever been determined but the apple forums are always buzzing about it. I had to either press very hard or reboot. Weird as you would think pressing hard would be mechanical but then it works on a reboot which indicates SW.
 
N

NetGuySC

Golden Member
Nov 19, 1999
1,643
4
81
I don't like Apple at all but damn. What's the big deal if someone could go thru extreme measures to get thru the fingerprint scanner? It's not like it is on the main gate at Fort Knox.

Sounds to me like Apple has really refined the fingerprint scanner to be somewhat useful and I'm sure Samsung, HTC and others will soon follow.
 
M

mosco

Senior member
Sep 24, 2002
940
1
76
silverpig said:
You guys are completely missing the point.

With other phones, I need your phone and your PIN to gain access. With the 5s, I just need your phone.

Why?

Well because your phone has your fingerprints all over it of course. Apple has basically just invented a system whereby you leave your PIN written on a sticky on the back of your phone. A PIN you can't change.
Click to expand...

I can't find it now, but I believe I read something that said that they were unable to lift any usable fingerprints off the phone, and that they had to use a 2400DPI scan of the finger that they got from other means.

I think it's easier said than done to get the finger print off the phone.
 
D

desura

Diamond Member
Mar 22, 2013
4,627
129
101
OP reminds me of the "security experts" at google chrome who decided to make all saved passwords visible in the settings, the rationale being that someone who had gotten that far would have the password anyways so why bother with such a low level of encryption?

Not taking into account casual loss of passwords, like a family member finding a password in that way...

Actually, I have figured out how to unlock android phones by following the grease streak on the screen...
 
E

ewdotson

Golden Member
Oct 30, 2011
1,295
1,520
136
The industry standard is pretty much a *four number passcode*, right? I'm pretty sure that storing genuinely sensitive information on your phone with no additional protection beyond having to unlock the phone to get at it was *always* a bad idea.
 
M

MrX8503

Diamond Member
Oct 23, 2005
4,529
0
0
Oyeve said:
I dont think its ever been determined but the apple forums are always buzzing about it. I had to either press very hard or reboot. Weird as you would think pressing hard would be mechanical but then it works on a reboot which indicates SW.
Click to expand...

I've only heard the home button not being responsive due to dust.

6108477141_9c5dca56ec_o.jpg
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom