{"id":87,"date":"2006-03-09T12:07:06","date_gmt":"2006-03-09T12:07:06","guid":{"rendered":"http:\/\/www.reactivated.net\/weblog\/?p=87"},"modified":"2006-08-30T03:23:15","modified_gmt":"2006-08-30T03:23:15","slug":"mikko-kiviharjus-black-hat-session","status":"publish","type":"post","link":"https:\/\/www.reactivated.net\/weblog\/archives\/2006\/03\/mikko-kiviharjus-black-hat-session\/","title":{"rendered":"Mikko Kiviharju&#8217;s Black Hat session"},"content":{"rendered":"<p>Mikko gave his <a href=\"http:\/\/www.blackhat.com\/\">Black Hat<\/a> Europe presentation about the security issues with Microsoft\/DigitalPersona&#8217;s fingerprint readers recently, which seems to have been a success.<\/p>\n<p>It has gained media attention, with <a href=\"http:\/\/news.google.com\/news?hl=en&#038;ned=us&#038;ie=UTF-8&#038;ncl=http:\/\/www.engadget.com\/2006\/03\/07\/microsoft-fingerprint-reader-gives-up-your-prints\/\">a few reports<\/a> floating around in addition to the one I linked to recently. <a href=\"http:\/\/www.itnews.com.au\/newsstory.aspx?CIaNID=30692\">itnews.com.au<\/a> has one of the better ones, including comments from Digital Persona. At least Mikko found one way to get through to them :)<\/p>\n<p>Mikko&#8217;s slides are online <a href=\"http:\/\/www.blackhat.com\/presentations\/bh-europe-06\/bh-eu-06-Kiviharju\/bh-eu-06-kiviarju.pdf\">here<\/a> and it looks like audio will be published soon <a href=\"http:\/\/www.blackhat.com\/html\/bh-media-archives\/bh-archives-2006.html#eu-06\">on this page<\/a>. Mikko explains the lack of encryption and references the <a href=\"http:\/\/dpfp.berlios.de\">dpfp<\/a> project in a few places for some of the discoveries. He also explains some of the device optics and demonstrates how the lack of encryption can be exploited to allow finger replay attacks.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Mikko gave his Black Hat Europe presentation about the security issues with Microsoft\/DigitalPersona&#8217;s fingerprint readers recently, which seems to have been a success. It has gained media attention, with a few reports floating around in addition to the one I linked to recently. itnews.com.au has one of the better ones, including comments from Digital Persona. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,1],"tags":[],"class_list":["post-87","post","type-post","status-publish","format-standard","hentry","category-fingerprinting","category-gentoo"],"_links":{"self":[{"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/posts\/87","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/comments?post=87"}],"version-history":[{"count":0,"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/posts\/87\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/media?parent=87"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/categories?post=87"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.reactivated.net\/weblog\/wp-json\/wp\/v2\/tags?post=87"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}