Hacker group develops method to circumvent iPhone Touch ID system (w/ Video)

Sep 23, 2013 by Bob Yirka report

(Phys.org) —A biometric hacking team known as Chaos Computer Club (CCC), has posted on its website, what it claims is an easy way to access an iPhone equipped with Apple's new Touch ID fingerprint scanning security system. The new technology allows users to unlock their phone by pressing their finger against the "home" button. The "hack" involves photographing a user's fingerprint, printing it on a laser printer, then using a filler to create a fake rubber-like fingertip with the user's fingerprint on it.

With the introduction of the lastest iPhone, the 5s, Apple has also introduced a new way to allow users to access their phones after it's been locked—using just their finger tips. It's easier than typing in a and Apple has been claiming in ads, the fingerprint is "highly" secure. That claim now appears to be in doubt as CCC demonstrates that a hacker willing to go to extreme lengths to unlock someone's iPhone, can do so, with a minimum amount of effort.

More specifically, CCC claims that to "hack" the phone, all a person needs to do is obtain the true owner's fingerprint on a pane of glass (they don't say if the phone screen itself can be used.) That fingerprint is photographed with a high resolution (2400 dpi) camera, cleaned up and inverted (presumably with PhotoShop) and then printed using a high resolution (1200 dpi) laser printer with the toner set to print thick. Next, liquid latex is poured into the printout and once dry is peeled off. The result is a rubber-like facsimile of the original user's , complete with an accurate representation of the fingerprint. When pressed against the home button on the iPhone, the phone recognizes it as the real McCoy and allows entry.

This video is not supported by your browser at this time.

The technique wasn't discovered by the CCC of course, it's been used by other groups to circumvent other finger , but it is apparently effective as a means to circumvent Apple's latest security system. There is one caveat—Apple's OS doesn't allow the phone to be unlocked with a fingerprint if the hasn't been active in the past 48 hours, or if it's been reset, thus, the hack won't work if the hackers take too long with their efforts.

Explore further: US senator concerned about Apple fingerprint tech (Update)

Related Stories

iPhone 5S fingerprint scanning: Thumbs up or down?

Sep 13, 2013

Technology to acquire and use biometric data such as fingerprints has been around for several decades and has made its way from forensic investigation to laptop computers – and now, with this week's introduction ...

Review: iPhone fingerprint sensor worth extra cost

Sep 18, 2013

Passcodes are such a pain that I've relaxed the security settings on my Android phone. I'm willing to forgo the extra safety, just so I'm asked to punch in the code less often. When I got my hands on Apple's ...

Recommended for you

SR Labs research to expose BadUSB next week in Vegas

14 hours ago

A Berlin-based security research and consulting company will reveal how USB devices can do damage that can conduct two-way malice, from computer to USB or from USB to computer, and can survive traditional ...

3D TV may be the victim of negative preconceptions

23 hours ago

An academic from Newcastle University, UK, has led a lab-based research, involving 433 viewers of ages from 4 to 82 years, in which participants were asked to watch Toy Story in either 2D or 3D (S3D) and report on their viewing ...

Microsoft unveils Xbox in China as it faces probe

Jul 30, 2014

Microsoft on Wednesday unveiled its Xbox game console in China, the first to enter the market after an official ban 14 years ago, even as it faces a Chinese government probe over business practices.

A smart wristband for nocturnal cyclists

Jul 29, 2014

Five EPFL PhD students have developed a wristband that flashes when the rider reaches out to indicate a turn. Their invention was recognized at a European competition.

Lenovo's smart glasses prototype has battery at neck

Jul 28, 2014

China's PC giant Lenovo last week offered a peek at its Google Glass-competing smart glass prototype, further details of which are to be announced in October. Lenovo's glasses prototype is not an extreme ...

User comments : 3

Adjust slider to filter visible comments by rank

Display comments: newest first

EyeNStein
1 / 5 (6) Sep 23, 2013
This isn't really a 'hack' at all unless you can lift the owners prints off a stolen phone? In which case police finger printing kits will start appearing on Ebay.
antialias_physorg
not rated yet Sep 23, 2013
The "hack" involves photographing a user's fingerprint, printing it on a laser printer, then using a filler to create a fake rubber-like fingertip with the user's fingerprint on it.

Looks exactly like th method they used a few years back to dupe the biometric scanners which were en vogue for laptops for a while.
Hardware (and software) manufacturers seem not to have learned a thing in the meantime.
Anda
not rated yet Sep 24, 2013
Ahahah embrace the new touch era! Beware your fingers :)