Bypassing an Enterprise-Grade Biometric Face Authentication System presented at hacktivity2018 2018

by Matthias Deeg,

URL : https://www.youtube.com/watch?v=OfIxaI390SU&t=0s&list=PLbrZ_OVEaffK2bi8mmSHAFiZ3YXUSktSO&index=23

Summary : Biometric authentication systems have long, checkered history in IT security and are regarded as a highly controversial technology. Many manufacturers and users love them because of their usability and the personal touch they give to human-computer interaction when it comes to an often annoying but necessary task like user authentication. Other people hate them because of data privacy and security concerns. Despite all the controversy, biometric authentication systems are still here and they seem to stay.In fall 2017, SySS GmbH started a research project concerning the enterprise-grade face authentication system Microsoft Windows Hello Face Authentication based on near infrared technology.In our talk, we will present the results of our research project concerning the enterprise-grade face authentication system Windows Hello Face Authentication by Microsoft based on near infrared and visible light and will demonstrate how different versions of it can be bypassed by rather simple means.