Session:Dr. Strangethumb or: How I Learned to Stop Worrying and Love Biometrics

From Camp_2015_Wiki
Revision as of 13:11, 8 July 2015 by Shiku camp (talk | contribs) (Created page with "{{Session |Is for kids=No |Has description=Workshop objective: Empower attendees to make an informed decision about whether or how to use biometric authentication in their da...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Description Workshop objective:

Empower attendees to make an informed decision about whether or how to use biometric authentication in their daily lives, by

   giving them some hands-on experience using spoofs to achieve reliable false positives
   investigating the privacy- and security benefits and drawbacks of biometric authentication over other authentication methods
   discussing ways in which users can protect their privacy and device security without writing biometrics off as a total threat
Website(s)
Type
Kids session No
Keyword(s) embedded, hacking, security
Person organizing User:Mr Schlapps
Language en - (g)english"en - (g)english" is not in the list (ab - Abkhazian, af - Afrikaans, an - Aragonese, ar - Arabic, as - Assamese, az - Azerbaijani, be - Belarusian, bg - Bulgarian, bn - Bengali, bo - Tibetan, ...) of allowed values for the "Held in language" property.
en - (g)english
Other sessions... ... further results

Workshop objective: Empower attendees to make an informed decision about whether or how to use biometric authentication in their daily lives, by

   giving them some hands-on experience using spoofs to achieve reliable false positives
   investigating the privacy- and security benefits and drawbacks of biometric authentication over other authentication methods
   discussing ways in which users can protect their privacy and device security without writing biometrics off as a total threat


Workshop outline:

10min - introduction to topic 30min - demonstration & hands-on time

   scanning or photographing latent fingerprints and pre-processing them to use as templates
   molding wood glue fingerprints and tweaking them for better success
   speeding up the process with UV-sensitive resin 
   bypassing human face authentication with 'liveness check' 
   the future: vein spoofing, and overcoming 3D facial scans 

20min - Discussion and Q&A

   Where can we really draw the line between the three authentication factors (Something we KNOW, Something we ARE, What we HAVE)
   In terms of privacy, security, usability, and even 'power', what do we lose or gain by using different biometrics to authenticate to our devices?
   What are best-practices for both users and non-users of biometric authentication?
   Should or can the spread of biometric authentication and identification be stopped?