Kaspersky introduces fake fingerprint ring to highlight biometric data security issues
To get around the theoretical problem of irrevocable biometric data being hacked, Kaspersky has teamed up with a jewelry designer to develop a ring which features artificial fingerprints.
In a blog post and a slick promotional video, the company explains that the concept product can be used with smartphone unlocking systems and various other fingerprint sensor types, with the physical shape and texture of a real finger, the right kind of pattern and flexibility, and conductive fibers.
Fake prints are 3D-printed based on a freely available software tool, and then made unique with an additional layer. The conductive fibers are metal, and suspended in a rubber compound to make up a “biometric stone” set into the silver ring. This means the biometric can be changed, blocked, or reset, according to Kaspersky.
Kaspersky says malware was detected on 37 percent of computers collecting, processing, or storing biometric data in Q3, 2019, and further that 5.4 percent of computers involved with biometrics were attacked with spyware which was potentially capable of exfiltrating biometric data. The post also notes the recent exposure of biometric information in plain text files on the internet.
The company does not have imminent sales plans for the ring, but rather says it is “the result of a collaboration between us and the designer, aimed at drawing more attention to security related issues surrounding biometrics. We believe they must be solved through technology and on the devices that are used to process such valuable data, not by customers.”
In the future Kaspersky plans to help build, the ring will not be necessary anyway, as every computer and device storing biometric data will be immune to attacks and leaks due to being built on secure-by-design system like KasperskyOS.
The post does not specifically mention liveness detection.