To Swipe or Not to Swipe: A Challenge for Your Fingers

  • Friday, April 24, 2015 | 9:00 AM – 9:50 AM | West | Room: 3018

View all Sessions

We will provide in-depth security analysis of the mobile fingerprint authentication/authorization frameworks. We will discuss the security flaws of current designs, including the confused authorization attack, fingerprint DB manipulating attack to pre-embed fingerprint backdoors, and fingerprint sensor spying attack to harvest fingerprints. We will also show demos, such as making PayPal money transfer protected by fingerprints, and collecting fingerprint images from popular devices like Samsung Galaxy S5.


This document was retrieved from on Tue, 23 Jul 2019 07:23:17 -0400.