|
DrBitcoin (OP)
|
 |
February 18, 2014, 01:50:50 PM |
|
In my opinion, biometric technologies like apples touch ID is the solution to Bitcoin hackers on major exchanges. Imagine Coinbase or Bitpay had a user enabled feature that requires your fingerprint in order to confirm any Bitcoin transactions.
Then, a hacker would need to get into your account, defeat two factor authentication... and have acess to your fingerprint to confirm any transaction requests.
Obviously, this could be a user enabled feature that conspiracy theorists or people looking to just be anonymous could opt out of.
If Apple were to open up its touch ID to third parties, this would be the best offering. But for the meanwhile, can't a website like coinbase allow you to buy a third-party fingerprint scanner?
|
|
|
|
|
bobalo
Member
 Offline
Activity: 80
Merit: 10
|
|
February 18, 2014, 01:51:27 PM |
|
Not everyone has a finger scanner...
|
|
|
|
substratum
Newbie
Offline
Activity: 36
Merit: 0
|
|
February 18, 2014, 02:08:42 PM |
|
This is no better than OTP 2FA; both are worthless if your machine is infected by man-in-the-browser (MitB) malware. If you haven't been following banking malware trends you may not be aware - thieves have been bypassing 2FA easily for quite some time. Transaction Integrity Verification (TIV) using an offline device is the only way to defeat theft by MitB malware.
|
|
|
|
|
|
|
hilariousandco
Global Moderator
Legendary
Offline
Activity: 3850
Merit: 2647
Join the world-leading crypto sportsbook NOW!
|
|
February 18, 2014, 04:44:40 PM |
|
I think Biometrics would be a worthy two/third-factor authentication as long as they were implemented properly and safe.
|
|
|
|
hellscabane
Legendary
Offline
Activity: 896
Merit: 1000
|
|
February 18, 2014, 04:53:59 PM |
|
You know, you may actually be onto something here. The problem is how to make this process seamless and safe. There are several major companies trying to incorporate biometrics with their security practices and it could behoove BTC if several major exchanges/applications incorporate it.
Once again though, the problem is making the process seamless and safe.
|
|
|
|
|
Remember remember the 5th of November
Legendary
Offline
Activity: 1862
Merit: 1011
Reverse engineer from time to time
|
|
February 18, 2014, 05:07:23 PM |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
|
BTC:1AiCRMxgf1ptVQwx6hDuKMu4f7F27QmJC2
|
|
|
|
Yogafan00000
|
|
February 18, 2014, 05:10:17 PM |
|
The problem with biometrics is that once your scan data has been compromised by data thieves, you can't change any of it.
|
1YogAFA... (oh, nevermind)
|
|
|
hazek
Legendary
Offline
Activity: 1078
Merit: 1002
|
|
February 18, 2014, 05:12:24 PM |
|
They key to defeat hackers are secure hardware wallets, you'd imagine we'd have one by now. I'm still waiting on Trezor to ship and am hopeful it will be everything it needs to be - we'll see. Any updates slush? |
My personality type: INTJ - please forgive my weaknesses (Not naturally in tune with others feelings; may be insensitive at times, tend to respond to conflict with logic and reason, tend to believe I'm always right)
If however you enjoyed my post: 15j781DjuJeVsZgYbDVt2NZsGrWKRWFHpp
|
|
|
hellscabane
Legendary
Offline
Activity: 896
Merit: 1000
|
|
February 18, 2014, 05:31:34 PM |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
This is the difficulty in making biometrics seamless and safe. One of the biggest issues is that unimodal biometric systems lack robustness. On the other hand, strictly multimodal biometric systems are very robust but they lack the seamlessness of unimodal systems. There has been work done on creating an adaptive multimodal system which uses probabilities to account for changes that the human body encounters but the difficulty is in trusting the robustness of the probabilities and securities of multi-level gaming of the systems. |
|
|
|
|
|
seriouscoin
|
|
February 18, 2014, 05:35:32 PM |
|
Not to mention fingerprints are every easy to steal.... yeah....
We still dont have robust technology for this application yet. For ex: eye scanning is so damn slow.
|
|
|
|
|
|
seriouscoin
|
|
February 18, 2014, 05:36:30 PM |
|
They key to defeat hackers are secure hardware wallets, you'd imagine we'd have one by now. I'm still waiting on Trezor to ship and am hopeful it will be everything it needs to be - we'll see. Any updates slush? About Trezor.... when will they have it ready? i really cant wait |
|
|
|
|
hazek
Legendary
Offline
Activity: 1078
Merit: 1002
|
|
February 18, 2014, 05:43:07 PM |
|
They key to defeat hackers are secure hardware wallets, you'd imagine we'd have one by now. I'm still waiting on Trezor to ship and am hopeful it will be everything it needs to be - we'll see. Any updates slush? About Trezor.... when will they have it ready? i really cant wait Would be nice to know, I agree. |
My personality type: INTJ - please forgive my weaknesses (Not naturally in tune with others feelings; may be insensitive at times, tend to respond to conflict with logic and reason, tend to believe I'm always right)
If however you enjoyed my post: 15j781DjuJeVsZgYbDVt2NZsGrWKRWFHpp
|
|
|
hilariousandco
Global Moderator
Legendary
Offline
Activity: 3850
Merit: 2647
Join the world-leading crypto sportsbook NOW!
|
|
February 18, 2014, 05:48:39 PM |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
DNA scanning is even more far-fetched, but could be fun. Imagine licking or spitting into something before you could send your Bitcoins  . I'm sure there'll be fingerprint Bitcoin apps at some point. |
|
|
|
|
seriouscoin
|
|
February 18, 2014, 05:54:01 PM |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
DNA scanning is even more far-fetched, but could be fun. Imagine licking or spitting into something before you could send your Bitcoins . I'm sure there'll be fingerprint Bitcoin apps at some point. Altho DNA is unique (all 13 pairs) but its not guaranteed to stay the same. |
|
|
|
|
substratum
Newbie
Offline
Activity: 36
Merit: 0
|
|
February 18, 2014, 06:30:06 PM |
|
The long and short of it is this: there's no method you can use to authenticate yourself to a remote website via an infected computer that man-in-the-browser malware can't hijack en-route and use in order to pretend to be you. Instead you need to validate the integrity of your transactions on a separate device. That's what Cronto does for banks and that's what Trezor does for Bitcoin wallets.
|
|
|
|
|
hilariousandco
Global Moderator
Legendary
Offline
Activity: 3850
Merit: 2647
Join the world-leading crypto sportsbook NOW!
|
|
February 19, 2014, 02:36:29 PM
Last edit: February 19, 2014, 03:08:23 PM by hilariousandco |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
DNA scanning is even more far-fetched, but could be fun. Imagine licking or spitting into something before you could send your Bitcoins . I'm sure there'll be fingerprint Bitcoin apps at some point. Altho DNA is unique (all 13 pairs) but its not guaranteed to stay the same. Are you saying peoples DNA changes? |
|
|
|
Remember remember the 5th of November
Legendary
Offline
Activity: 1862
Merit: 1011
Reverse engineer from time to time
|
|
February 19, 2014, 02:39:35 PM |
|
I already spoke to some of the devs, they quickly proved me wrong that biometrics are viable. They said for instance, that fingerprints are not the same throughout the whole life, they change and are are not as accurate all the time. I also tried saying ok what about a DNA scan, proved me wrong again.
DNA scanning is even more far-fetched, but could be fun. Imagine licking or spitting into something before you could send your Bitcoins . I'm sure there'll be fingerprint Bitcoin apps at some point. Altho DNA is unique (all 13 pairs) but its not guaranteed to stay the same. Are you sating peoples DNA changes? I think I read somewhere that throughout a person's life, he has many mutations in his DNA. |
BTC:1AiCRMxgf1ptVQwx6hDuKMu4f7F27QmJC2
|
|
|
franky1
Legendary
 Online
Activity: 4270
Merit: 4533
|
|
February 19, 2014, 03:16:53 PM |
|
In my opinion, biometric technologies like apples touch ID is the solution to Bitcoin hackers on major exchanges. Imagine Coinbase or Bitpay had a user enabled feature that requires your fingerprint in order to confirm any Bitcoin transactions.
Then, a hacker would need to get into your account, defeat two factor authentication... and have acess to your fingerprint to confirm any transaction requests.
Obviously, this could be a user enabled feature that conspiracy theorists or people looking to just be anonymous could opt out of.
If Apple were to open up its touch ID to third parties, this would be the best offering. But for the meanwhile, can't a website like coinbase allow you to buy a third-party fingerprint scanner?
as others have said biometrics is not easy. 1. not everyone has/wants a fingerprint scanner. 2. if i cut my thump and it left a scar, the thumbprint wont match the one on the exchanges database 3. a trojan horse could sniff the data input of a USB port to copy the persons thump print and then use it later.. much like keyloggers sniff usb keyboards. 4. the actual lesson to learn is to teach people not to use exchanges as long term bank accounts. |
I DO NOT TRADE OR ACT AS ESCROW ON THIS FORUM EVER.
Please do your own research & respect what is written here as both opinion & information gleaned from experience. many people replying with insults but no on-topic content substance, automatically are 'facepalmed' and yawned at
|
|
|
|
Rawted
|
|
February 19, 2014, 03:17:41 PM |
|
I have been tinkering with this idea for quite some time. Multi tiered personal security appliances. Split into packages according to their security level (from basic to advanced). Can be used separately or combined together like Voltron to produce the ultimate personal security device. The drafts for my idea have something like level 1: fingerprint and/or voice level 2: level 1 + retinal level 3: level 2 + laser dna (think http://www.ncbi.nlm.nih.gov/pubmed/8379664 but compact) The amount of engineering to put this idea into production is way out of my league, however. |
|
|
|
|
|
