RSS Alerts
Out of play: fingerprints failed to stop a fifth of black-listed volunteers entering stadia

Related Stories

  • Educating children on data protection
    The use of biometrics and CCTV in school classrooms - installed to protect pupils - may just as easily put them at risk of other dangers. What, then, can be done to prepare our children for the big wide world of data protection? Rob Stringer reports…
  • Keynote Theatre Agenda
    The 2010 Keynote programme will address the security issues and pressures that organisations face in an increasingly mobile and global working environment. Leading security experts, industry innovators and speakers from the end-user community who will provide expert analysis, real-life case studies, strategic advice and predictions.
  • iPhone cracker repeats exploit on Playstation 3
    George Hotz, the first iPhone cracker – and who reportedly spent more than 500 hours developing the first jailbreak application for the Apple's iPhone back in 2007 – has apparently cracked the Sony Playstation 3.
  • 2010 Virtual Conference on Endpoint Security - Beyond the Perimeter - Full conference programme revealed
    Infosecurity US magazine is excited to announce the 2010 virtual conference on endpoint security, to be held on February 25, 2010. This one-day event brings a series of topical keynote sessions direct to your computer, giving you the flexibility to learn about the latest information security trends and challenges from wherever you are in the world.
  • Amazon cloud resource tapped for botnet command and control service
    A subscriber to the Amazon pay-as-you-use EC2 cloud computing has had their website hacked, and a command and control (C&C) system installed for the Zeus botnet, which continues to be a problem for PC users, despite the worm being almost two and a half years old.

News

Biometrics 2007: Fingerprints fail to tackle football ‘hooligans’

19 October 2007

A fingerprint recognition system failed to prevent black-listed fans from entering football grounds and was easily fooled by simple spoofing techniques, according to a trial by Dutch research organisation TNO.

Jurgen den Hartog, who undertook the research, said that with a false accusation rate of 0.1% – a low rate being a requirement for such a system, given the volume of supporters and the fact that false accusations could spark trouble – the fingerprint system failed to spot 15% to 20% of those on a volunteer black-list, recruited to test the technology, a level he described as “unexpected”.

“This has serious implications for a lot of other negative identification scenarios,” den Hartog told a session of the Biometrics 2007 conference in London on 18 October. “It’s very easy not to look like yourself, so I wonder what the impact of these results will be on other programmes.”

Negative identification fails if a black-listed person can fool the system into thinking they are not on that list, involving technically challenging one-to-many checks. Identity verification checks, such as with passports, require only a one-to-one check that the biometric recorded matches the individual, and fails only if someone else’s identity is hijacked.

Den Hartog said that fooling the fingerprint systems, LScan 100 scanners provided by NEC and HSB, proved easy for the volunteers, who were asked to attempt such spoofing. They used techniques including latent fingerprints on sticky tape and a layer of glue on fingers: “The trick is, do not press too hard,” he said of the latter. Both techniques also fooled a spoof-resistant scanner from Lumidigm in TNO’s labs.

Furthermore, the tests brought up other problems: the devices could check 12 fans a minute at best, but as few as four or five a minute on one occasion when it was in direct sunlight by Feyenoord’s ground. “The french fries stand outside the stadium couldn’t do business any more, because of the queue for our gate,” den Hartog said.

“The live system did not meet important requirements of speed, accuracy and robustness against manipulation,” den Hartog concluded. “I think speed and accuracy can be solved, but robustness against manipulation really remains a challenge.”

The research involved 6400 checks at 26 matches at three Dutch football clubs. TNO chose fingerprints in preference to iris or facial recognition, on a range of criteria including speed, reliability and proof against being fooled.

 

This article is featured in:
Biometrics

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water