{"id":67,"date":"2019-12-31T14:45:34","date_gmt":"2019-12-31T19:45:34","guid":{"rendered":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/?p=67"},"modified":"2020-05-04T13:20:22","modified_gmt":"2020-05-04T17:20:22","slug":"prevent-using-fingerprints-to-crack-codes","status":"publish","type":"post","link":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/2019\/12\/31\/prevent-using-fingerprints-to-crack-codes\/","title":{"rendered":"Prevent using fingerprints to crack codes"},"content":{"rendered":"

It’s pretty clich\u00e9 scene in movies and TV shows where someone needs to crack a code to a safe or a door, so they dust the keypad for fingerprints or use a thermal camera to see the heat signatures on the pad. While it doesn’t give the code outright, it reduces the domain of possible codes significant and, depending on the circumstances, can make it much easier (to the point of actually giving the code outright).<\/p>\n

One solution to this is to replace the physical keypad with a touch-screen on which a number-pad is displayed, but the position of the numbers on the displayed pad are randomized<\/strong> instead of in standard phone\/keyboard order. That way, each time you enter the code, you end up having to press on a different area of the screen and fingerprint\/thermal attacks would be mitigated. Of course this would also have the side-effect of slightly increasing the time to enter the code and likely annoy the users, but it’s worth it for good security.<\/p>\n

\"Heat<\/a>
The heat signature exposes the code<\/figcaption><\/figure>\n
\"Fingerprints<\/a>
Someone using fingerprints to crack a safe in an episode of \u201ciZombie\u201d<\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":"

It’s pretty clich\u00e9 scene in movies and TV shows where someone needs to crack a code to a safe or a door, so they dust the keypad for fingerprints or use a thermal camera to see the heat signatures on the pad. While it doesn’t give the code outright, it reduces the domain of possible […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-67","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/posts\/67","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/comments?post=67"}],"version-history":[{"count":0,"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/posts\/67\/revisions"}],"wp:attachment":[{"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/media?parent=67"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/categories?post=67"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/synetech.ddns.net\/blogs\/betteryet\/wp-json\/wp\/v2\/tags?post=67"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}