Posts: 15
Threads: 2
Joined: Oct 2021
Hi guys,
I am wondering, if you thought about getting access to the finger print sensor data?
Do you thought about this?
Thanks,
Romaxx
Posts: 548
Threads: 25
Joined: Apr 2020
Institution: RWTH Aachen University
Hm… do you have a certain application on your mind? Please note that raw fingerprint data is definitely not accessible…
Posts: 15
Threads: 2
Joined: Oct 2021
(03-21-2022, 09:18 PM)Jens Noritzsch Wrote: Hm… do you have a certain application on your mind? Please note that raw fingerprint data is definitely not accessible…
No, not yet.
I was wondering, if fingerprint sensor data can be accessed some how easily like the acceleration data from the acceleration sensor.
I do not know how such sensor data would look like but phyphox is a app giving access to several sensors and their data, so I thought, you might thought about this?
Thanks.
Posts: 548
Threads: 25
Joined: Apr 2020
Institution: RWTH Aachen University
(03-21-2022, 11:21 PM)Romaxx Wrote: I was wondering, if fingerprint sensor data can be accessed some how easily like the acceleration data from the acceleration sensor.
No, it can't – for good reasons…
Posts: 15
Threads: 2
Joined: Oct 2021
(03-22-2022, 12:21 PM)Jens Noritzsch Wrote: (03-21-2022, 11:21 PM)Romaxx Wrote: I was wondering, if fingerprint sensor data can be accessed some how easily like the acceleration data from the acceleration sensor.
No, it can't – for good reasons…
Can you elaborate on these reasons?
Posts: 548
Threads: 25
Joined: Apr 2020
Institution: RWTH Aachen University
Security and privacy. The sensor is closely bound to the Secure Enclave and Android's equivalent, respectively, so it is heavily protected by software or even hardware.
Posts: 15
Threads: 2
Joined: Oct 2021
03-22-2022, 11:51 PM
(This post was last modified: 03-22-2022, 11:54 PM by Romaxx.)
(03-22-2022, 10:30 PM)Jens Noritzsch Wrote: Security and privacy. The sensor is closely bound to the Secure Enclave and Android's equivalent, respectively, so it is heavily protected by software or even hardware.
What security risk can exist, when raw fingerprint sensor data is applicable? I mean, the sensor has to be faked, not the data, which it produces. Or is it even the functioning principle of the sensor, which would be identified? Would that mean, fingerprint sensors are used to hide their functioning principle in general? But if so, how they can report the fulfillment of specific requirements, like necessary standards? Thanks.
Posts: 548
Threads: 25
Joined: Apr 2020
Institution: RWTH Aachen University
I am not an expert on this, so please check with those who have written
https://source.android.com/security/biometric, for instance…