Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Security Biotech Privacy Software Hardware Technology

New VibWrite System Uses Finger Vibrations To Authenticate Users (bleepingcomputer.com) 44

An anonymous reader quotes a report from Bleeping Computer: Rutgers engineers have created a new authentication system called VibWrite. The system relies on placing an inexpensive vibration motor and receiver on a solid surface, such as wood, metal, plastic, glass, etc.. The motor sends vibrations to the receiver. When the user touches the surface with one of his fingers, the vibration waves are modified to create a unique signature per user and per finger. Rutgers researchers say that VibWrite is more secure when users are asked to draw a pattern or enter a code on a PIN pad drawn on the solid surface. This also generates a unique fingerprint, but far more complex than just touching the surface with one finger. During two tests, VibWrite verified users with a 95% accuracy and a 3% false positive rate. The only problem researchers encountered in the live trials was that some users had to draw the pattern or enter the PIN number several times before they passed the VibWrite authentication test. Besides improvements to the accuracy with which VibWrite can detect finger vibrations, researchers also plan to look into how VibWrite will behave in outdoor environments to account for varying temperatures, humidity, winds, wetness, dust, dirt, and other conditions. This new novel user authentication system is described in full in a research paper entitled "VibWrite: Towards Finger-input Authentication on Ubiquitous Surfaces via Physical Vibration."
This discussion has been archived. No new comments can be posted.

New VibWrite System Uses Finger Vibrations To Authenticate Users

Comments Filter:
  • by Anonymous Coward

    Mine changes with every cup of coffee!

    Good luck with this!

    • by Anonymous Coward

      What problem is this supposed to solve?

      • The "You are not spending enough money on pointless solution problem." That way, our corporate overlords can sell us a "security solution" at the front door, and any one with enough money can rent the bypass out the back. Mo Money, Mo Money!
      • umm.. more ways to use vibrators??
  • by Zorro ( 15797 ) on Tuesday October 31, 2017 @04:45PM (#55465879)

    I hear it has a good buzz from the users.

  • by 140Mandak262Jamuna ( 970587 ) on Tuesday October 31, 2017 @04:50PM (#55465911) Journal
    The problem is not finding something unique about someone. That is not the only purpose of authentication. The purpose is to prevent third parties from faking it.

    No matter what it is, fingerprints, voice prints, retinal scans, finger vibrations, deep alpha waves of the brain, characteristic whorls in your scalp, the unique biota of bacteria living in your colon... it does not matter what it is. It gets digitized and gets transmitted. If the digitized data is compromised, then there is no way for the user to change these things. They make particularly bad authentication tokens. Governments and spy agencies would love such unalterable tags on people. But it does not solve the problem of authentication.

    What we need is a true two factor authentication. Something I have physically. Something I can change if it is compromised. I use an RSA id key fob I have to login to Schwab. If they discover a flaw, and the randmoizer seed was hard wired, something leaked, some employee was bribed to sell some key info about it to random criminals... We can change the key fob. How am I going to change my fingerprint or voice print or thumb vibrations, if that authentication mechanism was compromised?

    • The problem is not finding something unique about someone. That is not the only purpose of authentication. The purpose is to prevent third parties from faking it.

      I just wish they'd stop basing these systems on body parts that can easily be removed. It's like they're encouraging people with bolt cutters.

      • by Calydor ( 739835 )

        At least the summary sounds like your finger is supposed to stay attached to you in order to work. That's better than MANY of the early versions!

      • by mwvdlee ( 775178 )

        You'd like it to be based on body parts which are harder to remove?

  • what about reader to reader differences?

    some installs may not be down the same MM spacing.

    how often does it need calibration?

    • While this device seems like a horrible idea, for your concerns I would say it is probably very similar to fingerprint scanning.

  • my voice is my passport verify me

  • by sconeu ( 64226 ) on Tuesday October 31, 2017 @05:03PM (#55466005) Homepage Journal

    You cut your finger, put on a band-aid, and you are locked out of your account.

  • A 3% false positive rate is supposed to be meaningful? That means that 1 out of 33 people who try to login to something they are not authorized for will get in? How is this meaningful in any way? That number needs to decrease by several orders of magnitude before this wacky kludge of an idea should even be considered.

    Do you know how many false positives you get from a password? Exactly the odds of someone typing your password in by random, or by guessing. If you pick a reasonable password, that figure

  • they want us to give them the finger?
    No problem.

Karl's version of Parkinson's Law: Work expands to exceed the time alloted it.