Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Re:Old paper in obscure journal; trivially defeata (Score 1) 140

by PatrickBours (#36193574) Attached to: Verifying Passwords By the Way They're Typed
In any case it will be better than "just a PW". All the attacks for which this new system is vulnerable also hold for the usual username/password systems. But as you say, it will protect against some attacks like shouldersurfing. But as long as we have no details, we cannot comment on it.

Comment: Re:how will it know? (Score 1) 140

by PatrickBours (#36193420) Attached to: Verifying Passwords By the Way They're Typed
No, there will not be added complexity for the user. The system will record how you type and you can type in your normal manner. Actually reduced complexity as you can now use the same password everywhere because it is proven that your way of typing cannot be copied, so it does not matter if people know your password. This also means that the information actually does not need to be encrypted, as you need to have for a normal password. It is only adding extra security.

Comment: Re:The technology seems in its baby stage at the t (Score 1) 96

by PatrickBours (#33857408) Attached to: Smart Phones Could Know Their Users By How They Walk
As one of the authors I do agree with you that 20% EER is not the best. Since submitting this article we already went down to 10%. On gait with normal accelerometers (so not the low quality ones in the phones) we even get down to 1.5%. Still not as good as fingerprint, but on the other hand, it is unobtrusive. If you hurt your leg permanently, then just make a new reference template. If it is just temporary, then you need to realize that this gait recognition is just an extra security measure, so you no longer need to lock your phone every time you stop using it. You principally do this because you do not want a third person to have access. With gait recognition, the phone uses the gait to recognize this third person by a different gait and will lock it then for you. A sensible implementation would unlock the phone if normal gait is detected from the correct person, but also by using a normal PIN mechanism.

Comment: Re:users will see a bug, not a feature (Score 1) 96

by PatrickBours (#33857396) Attached to: Smart Phones Could Know Their Users By How They Walk
The article just explains an extra technique to secure a mobile phone. The way to implement this can be done in various ways. If the gait recognition system locks a mobile phone due to "wrong" walking, then by no means you have to "walk normally" to open it up again. The unlocking mechanism can be a normal PIN code mechanism. So no reason to throw around phones if you would now use a PIN code already.

"It's when they say 2 + 2 = 5 that I begin to argue." -- Eric Pepke

Working...