2 factor auth with Samsung Finger Print reader



  • Hi All
    Just want to suggest that maybe U guys at NFCRing make a Samsung Spesific app for the new models that support the fingerprint reader to make super duper 2 factor authentication.. :D

    So even if they manage to steal you'r ring AND your mobile they STILL will not get access.. :lol:

    What do you guys think?

    Source: http://developer.samsung.com/samsung-mobile-sdk#pass


  • Community Helper

    personally I find those fingerprint readers useless. They are not secure and storing my fingerprint data in a unknown place is no option for me.
    Just because Apple is having one in their iPhone it doesn't mean it's good.


  • Community Helper

    @Lafunamor

    personally I find those fingerprint readers useless. They are not secure and storing my fingerprint data in a unknown place is no option for me.

    I love my iPhone 5s having the fingerprint reader, it's more an ease of access thing than anything else and is very very good about what it accepts and rejects. I just wish they'd man up and add NFC functionality. I don't know how the Samsung reader will work but it is so very nice to not have to enter a pin all the time.
    I'm resigned to the fact that nothing is really truly secure so I just make things difficult enough to deter other people without making my life more difficult. ;)



  • @Lafunamor

    personally I find those fingerprint readers useless. They are not secure and storing my fingerprint data in a unknown place is no option for me.

    I hear your point, and also that concern to where the print is saved,as it is not open source and so no controll(This is me guessing as this is API based so its not open source I think)

    But I know that I would like to have one more action added to authenticate to my mobile for increased security, so its not "just" the ring, but still be easy and quick like a finger print read would be.

    Anyway, was just mentioned as an "idea" so all thought on it are great :)



  • Actually, Apple just released a white paper explaining how they keep the finger print secure.
    [url:3vbhgkp1]http://techcrunch.com/2014/02/26/how-touch-id-and-secure-enclave-work/?ncid=rss[/url:3vbhgkp1]


  • Community Helper

    @itzdarkoutthere

    Actually, Apple just released a white paper explaining how they keep the finger print secure.
    Well you still have to trust them and the fingerprint reader itself is not secure


  • Community Helper

    Heh, I knew how the Apple system worked but hadn't heard anything about the Samsung version of security... That's interesting giving third party apps access to the scanner. By and large though, companies don't tend to want to alienate their customers so I guess it'll be a fairly robust system.


  • Community Helper

    saw a really long video discussion about the fingerprint scanner on the iphone being unlocked by simply having an higher resolution image for a/the fingerprint and scanning it.

    they also said something in which i have to agree with, which the rest of the world doesn't really think about.

    [b:14p691q2]Fingerprints are usernames[/b:14p691q2], not passwords.
    this is because, you can change your password if it gets leaked or the database gets hacked or similar, fingerprint you cannot change!

    I've tried to find the video, without luck.


  • Community Helper

    You can do it with a lifted print, if you get a good one. But as you say, fingerprints are basically usernames with the advantage that not everyone can enter them. And I'm the only one who has my fingerprints on my fingers, it's a pretty basic proof of ownership right there.

    We're back at the secure versus ease of use with temptation removal discussion now, I reckon I've touched on it before.

    The only way to secure your house is to weld steel plate over the entire thing. Same with the phone.

    But that's kind of ridiculous, because you want to text someone or lie down in bed sooner or later, so we compromise security for minimal personal impact while retaining ease of use.

    So we use locks with keys, or cards, or rings. I love the Ring entry because set up right I can just straight-arm the door and walk in without stopping.
    It doesn't mean the house is either more or less secure than before, but it's certainly [b:1k7d292k]easier for me to get into and just as difficult for someone unauthorised to get into[/b:1k7d292k].

    They can still break a window, pick a lock, smash a door or climb through the roof. Or use a copy of your fingerprint if it's applicable.
    But not everyone is going to go to that kind of [b:1k7d292k]effort[/b:1k7d292k] to get at your gear, and if they are willing to go that far then odds are that they would have just used a cutting torch on the original ultra-secure steel box around the house.

    It's not a huge deal. Shrug your shoulders and move on, doing the best you can without wildly inconveniencing yourself and knowing that if someone really wants in then you can't stop them anyway.

    [b:1k7d292k]Just enough to deter the average idiot[/b:1k7d292k] is the best balance in my opinion.

    Still, back on topic - integrating the fingerprint reader on the samsung into the unlock app would be cool.


Log in to reply
 

Looks like your connection to NFC Ring Forum was lost, please wait while we try to reconnect.