Keystroke Dynamics Software : We all type UNIQUELY

1.     As on date Passwords are the most common form of identification but at the same time they are also the weakest. Though they are gradually being offered with replacements from the field of bio metrics,picture passwords and OTPs etc...still it will take its time before passwords are a forgotten past..now comes another cool option to identify uniquely....the concept is likely to surprise you if you have not heard of it before!!!!this is known as Keystroke Dynamics.The key points about this are bought out below in brief :

- Know as  Deepnet Security’s TypeSense keystroke dynamics software.

- TypeSense is an authentication solution based on the science of typeprint recognition that uses keystroke dynamics to accurately identify a user by the way they type characters across a keyboard. 

- Keystroke Dynamics technology extracts the distinctive characteristics found in typed sequences of characters, and creates a statistically unique signature from the typing patterns of a person. 

- These distinctive features include the duration for which keys are held and the elapsed time between successive keystrokes. This type of software runs in the background and constantly monitors your key stokes, learns your style, and can detect if your computer’s been hijacked.

- It’s relatively user-friendly and low-cost. 

- It’s mobile and can be used to access your online accounts from anywhere and can be easily integrated in your existing authentication infrastructure.

2.    But as on date the limitation is that typing style can vary greatly depending on whether you are tired, distracted, angry, medicated, or any number of other circumstances. These variations can cause the software to make false positive or negative errors.

3.    At DEFCON : 17, Andrea Barisani and Daniele Bianco demonstrated how to sniff keystrokes using unconventional side channel attacks. Wires in PS/2 keyboards leak information from the data wire into the ground wire which acts like an antenna. The leaked information about the keyboard strokes can be detected on the power outlet, as well as other wires on the same electrical system. By slicing open one of these lines, cutting the ground wire and attaching a probe, the line can be monitored and the signal isolated by filtering out the noise using software such as Scilab. The waves from the oscilloscope and the data can be streamed to the hacker’s computer where additional software is used to extract the victim’s keystroke information.Well..well ..well......there is no end!!!!

4.     Thanks https://www.mafiasecurity.com/access-control/keystroke-dynamics/ and http://www.deepnetsecurity.com/tokens/bio/typesense/

New Generation Biometrics : YOUR EYE MOVEMENTS ARE UNIQUE

1.   New generation Biometric Techniques have always raised appreciating eyebrows across.Like when I discussed about EARS SPEAKING at http://anupriti.blogspot.in/2010/01/ when-ears-speak.html.Although there are so many unheard unique and being used biometric in the offering this is certainly that I read on simply on curiosity.The complete post is at http://www.techgig.com/tech-news/editors-pick/Soon-eye-movements-can-be-your-new-password-15633.

2.   Now in brief goes like this :

-   This biometric system identifies people by the way they flicker their eyes while looking at a computer screen. 

-   Discovered and innovated by Oleg Komogortsev, a computer scientist at Texas State University-San Marco, is making use of the fact that no two people look at the world in the same way . When looking at a picture, different people will move their eyes among points of interest in different sequences.

-   Even if two people trace the same paths, the exact way they move their eyes differs, the 'LiveScience' reported. 

-   Eye movements could become part of the next generation of a more established biometric iris scans.

3.   More at http://www.techgig.com/tech-news/editors-pick/Soon-eye-movements-can-be-your-new-password-15633

New Gen BIOMETRICS : PALMSECURE from FUJITSU

1. Quiet often we seen biometrics fingers,palm,eyes,retina being chopped off in Hollywood movies for gaining illegal access to control rooms and secure areas by the bad man...so we used to think like there is no end and no permanent solution to this....now comes a solution to this problem wherein not the fingerprint or the palm print is taken as authentication model....it is the veins inside that exist inside the palm that matter and should match...now these veins should also be flowing blood to authenticate the logger.

2. Fujitsu provides a highly reliable biometric authentication system based on palm vein pattern recognition technology. PalmSecure™ features industry-leading authentication accuracy with extremely low false rates, and the non-intrusive and contactless reader device provides ease of use with virtually no physiological restriction for all users.Applications include :

• Physical access control / Time and Attendance
• User authentication to PCs or server systems
• Government / Commercial identity management systems
• OEM terminal devices (POS, ATMs or information kiosks)
• Other industry-specific applications
• 
  

3. More about this here.

When EARS Speak!!!

1. Do you any of the following :

(a) That your ears make sound?

(b) That these are know as otoacoustic emissions?

(c) That this has a biometric angle?

(d) That any two persons always have different otoacoustic emissions?

2. I am sure most of you don't because the exploitation of this fact has been recently discovered.Although it has been known from quite some time, that our ear makes sounds of its own, sometimes due to a scientific principle called otoacoustic emissions1, other times in protest to the loud music we listen to. In either case, the sounds are too weak to detect using normal microphones.Although scientists knew about these sounds since the 1940s, it was only with improvements in microphone technology in the 1970s, that it became possible to detect these otoacoustic emissions (OAE).

3. Recently though it has been suggested that such sounds may in-fact be used for biometric security devices of tomorrow. The variations in each person's OAE can be used as a metric for determining one's identity. The technology is as simple as a microphone!

4. A good enough microphone embedded in any device can be used to detect these sounds, and accordingly confirm ones identity, and be eventually used by banks to confirm the identity of a person over the phone, or by the phones themselves before they allow someone to make a call!

5. So for example,as on date when u speak to a customer service at a bank...u r supposed to tell you DOB,Phone number or street address for verification before you actually demand a solution to your account query...not so will be required in near future...wherein your phone set will be able to detecty the sound in your ear and verify your identity...nothing to memorise....plain simple unique identification.

6. Otoacoustic emissions can be clinically important as they are the basis of a simple, non-invasive, test for hearing defects in newborn babies and in children who are too young to cooperate in conventional hearing tests.

7. The good thing is that dead people do not emanate otoacoustic emissions.So unlike Hollywood movies...wherein a cut thumb or extracted eye have broken the identity procedures...this one won't....

HP in the racists scoooop!!!

1. Phenominal is the pace at which the IT Sector is growing and Interesting are the ways in which few errors happen one of which I am mentioning down.....

2. The issue has attracted worldwide attention this month, when a US Black man known as "Black Desi" posted a YouTube video that showed his HP webcam built in to its new computers refusing to track his face but on the other hand it could do so just fine for his white friend Wanda.Titled "HP computers are racist", the YouTube video quickly attracted more then 500,000 hits and showed Black Desi's webcam working as it should when his work colleague "White Wanda" stepped in front of the camera, but when "Black Desi" got in front, no face recognition took place.

3. What does HP have to say about it?

""

"We thank Desi, and the people who have seen and commented on his video, for bringing this subject to our attention," it said in a blog on its help page.

"The technology we use is built on standard algorithms that measure the difference in intensity of contrast between the eyes and the upper cheek and nose. We believe that the camera might have difficulty 'seeing' contrast in conditions where there is insufficient foreground lighting," the blog added.

""

4. So what would have happened is like this !!!!!HP would have conducted all QC tests in their labs which in all probablity would have involved only the whites......HP by now mut have enrolled few Blacks for better QC of their products in their labs......well that was just in good humour....

5. To errrrrr is human.....and to IT errrrr is HP.

LAPTOP Face Recognition falls FLAT!!!!

1. Now this is one interesting thing to read.All those claims by Saif Ali Khan in his ad promoting one company for face recognition feature introduction had made its way out of the IT World.....well....so it seems!!!!read ON.........

2. Experts from Bkis Internet Security in Vietnam have proven how easy it is to defeat this.In front of technology experts, authors and press representatives from different countries participating in an internet security conference, Bkis experts demonstrated the vulnerabilities in Face recognition function on Asus, Lenovo and Toshiba laptops. Even when set at the highest security level, the laptop could not prevent Bkis expert Mr Nguyen Minh Duc from breaking into the system. With some technical tricks, Duc in turn logged onto Asus, Lenovo and Toshiba computer at the amazement and continuous applause from the audience. Everyone was really surprised to see how a famous and trusted security technique could be broken so easily.A Pic is shown below from actual demo loc.In some cases,even the owners of Facebook profile photo could be printed and used.

3. What the researchers found is that the technology just isn't that hard to fool. Even photographs that have previously been digitized and distributed, like those on Web pages or transmitted through videophone conversations, will do the job.The model exploits the flaw in image processing. In other words, it uses a photo of a person instead of his/her real face. It works because the algorithms will process in effect digital information.Provided those conditions, an attacker might take some photos of one user within the system, perform some image editing, regenerate “special pictures” and penetrate into the system.

4. Now the worry point is that Biometric data, including facial recognition, is increasingly being built into passports, drivers licenses and other forms of ID. Australia and Germany both use facial recognition to control access and determine identity at border crossings, and the U.S. and other countries are moving in that direction. So....ab kya hogaaaa?

5. Thanks http://www.examiner.com,http://www.bkis.com and Chip magazine.

RFID

1. Here's an old thing in a new bottle...i mean old wine with a new meaning altogether.Radio-frequency identification (RFID) as would anyone know is an automatic identification method, relying on storing and remotely retrieving data using devices called RFID tags or transponders.

2. This is not a new invention ..but the usage certainly has made it something like new.The vast usage of RFID 2day includes a big scope from controlling inventory to controlling limited access to vehs and pers to new generation security systems.

3. Big guns of the manufacturing industries across the globe have already exploited the usage of this technology and now the technology is gradually making way in the Indian industry in the form of Daphene systems,ESSL to name a few that come to my mind instantly.

4. The good thing is that even as the technology is introduced to the consumer for the first time,it comes cheap...and i mean dirt cheap.Imagine controlling an inventory of a lakh plus item at just under 25K...ie less then 25 paise per item and now body would ignore at such a low cost in bulk for the benefit of organisation.This would not only maintain the inventory but would also avoid any theft being carried out in some body's pocket....so this is just the beginning of another technology revoloution...all u guys who keep looking for some technical buzz word...keep a track of this.....