Face Recognition Goes Mainstream For Notebooks 130
MojoKid writes "Consumer and business-class computer security has clearly become more sophisticated over the years.
Recent advances in recognition technology have brought forth new capabilities, like what can be found in Toshiba A305 series notebooks. Toshiba's Face Recognition software allows you to log in to the system simply by having your face properly recognized by the integrated webcam during Windows startup. Of course, the system's TrueSuite Access Manager also allows you to do the same, only using your fingers and the integrated fingerprint reader. However, TrueSuite goes a step further with the fingerprint reader, also allowing you to log in to Web sites, applications, and networks as well by using just your fingerprints."
and the downgrade? (Score:2, Insightful)
Cut off fingers? (Score:4, Insightful)
This seems so gimmicky. (Score:4, Insightful)
It's also likely the package is designed to be circumvented out of the box, as there could be some painful customer support issues if their software ever manages to lock out a legitimate user without such a feature.
Even with this, there's nothing to stop a common criminal who will just nuke and pave the system for export to South America or another country, which occurs quite often.
Re:Cut off fingers? (Score:5, Insightful)
Biometric ID has it's bad points, and certainly, in the most secure settings, you'll probably want to make sure you have contingencies for these. But these are not notebooks designed for the FBI, they are designed for the security conscious business user.
With that in mind, suppose, today, that a criminal was sitting before you with a knife, threatening to cut off your fingers one by one if you did not give him your notebook password. Are you really willing to sit there and tell me that you would rather have your hands butchered than give up your text-based password?
If someone was really willing to go to lengths like cutting your fingers off, then they probably have all sorts of incentive to do all sorts of awful things. I'm not sure Biometric security appreciably changes the situation for 99.9% of users.
Another gimmick (Score:4, Insightful)
Rubbish. Without full disk encryption, laptops today are as vulnerable as they were 15 years ago. If anything they're *more* vulnerable nowadays, simply because we store more on them, keep them connected to the net all the time, and more people are using them.
Gimmicks like fingerprint readers and face recognition are worthless if someone steals your machine. Simply boot knoppix, mount the fat/ntfs partition and copy all that juicy data right off the drive. In fact this happened to a high-profile person recently - someone recovered Adrian Sutil's (F1 driver) discarded hard disk and tried to get money off him in exchange for not publishing his photos and emails.
Face recognition is probably good fun to try out in the store and maybe help sell a few machines. But disk encryption and strong passphrases are inconvenient and require a bit of work, so nobody uses it.
Re:and the downgrade? (Score:5, Insightful)
It'd be great to have computers with stereo vision... With so many computers now coming standard with pinhole webcams, surely they don't cost too much. You could place one webcam at each top corner of the screen and then the computer would be able to produce a 3-D image of its environment.
Now you have to get a 3-D model of the person's face instead of just a photo.
This whole thing could be really bad. Imagine someone that just underwent massive facial trauma. Now, not even their computer likes them.
Re:Oh no! Not again. (Score:2, Insightful)
Not really new (Score:5, Insightful)
Re:Cut off fingers? (Score:3, Insightful)
That's the problem. People believe that these things are secure enough for the security conscious business user. Laptops are stolen all the time, whether for corporate espionage purposes or for resell value. The thing most people don't realize is that you don't have to cut someone's finger off to use their fingerprint on common scanners. There are many ways (the gummy bear technique) to fake a person's finger and print for these cheap fingerprint scanners.
How hard is it to type in a ten character password that means something to you? It becomes muscle memory after a while. I've used some of those scanners before and it took longer to load the software, recognize my finger and relay that to Windows than it did for me to enter my password. And that's when the scanner was clean. I think biometrics are a case of giving people what they think they want, when they want things simply because characters like Jason Bourne use them. It's capitalism, so whatever. Just don't fall into this security theater trap.
Re:Cut off fingers? (Score:3, Insightful)
No, of course not. I'd give up the password in an instant. That's the point! There better be a text-based alternate login.
Physical Acces (Score:2, Insightful)
Re:and the downgrade? (Score:3, Insightful)
sounds like a good lock (Score:4, Insightful)
Otherwise, if the "bad guys" have access to your machine, you're Pwn3d. Demos have been done using pictures of people to fool facial recognition software.
Of course, if an owner has cosmetic surgery or a really nasty accident, it's the owner who'll get locked out of the machine. If they want to use biometric ID for anything but security theater, they need it as part of at least two-factor authentication. . . meaning "something you know" (i.e., a password) or something you've got (e.g. an RFID token key)
I'd rather get info from people with a clue. (Score:5, Insightful)