Smartphone Face Recognition Spoofed Says The Which? Consumer Test Group.
Smartphone Face Recognition Spoofed – Consumer test and review group, Which?, said smartphone face recognition can be spoofed using 2D photos.
A report in Yahoo Finance UK from UK-based consumer testing and review group, Which?, found smartphone face biometrics from many leading brands are vulnerable to spoof attacks with 2D photographs.
The testing and review group said the vulnerability is “unacceptable,” and has “worrying implications” for user’s security. The phones tested included Honor, Motorola, Nokia, Oppo, Samsung, Vivo and Xiaomi handsets.
Of note, Apple’s 3D FaceID biometrics were not fooled by the 2D photos. According to the report, 40 per cent of devices tested were vulnerable.
The findings have relevance for some electronic security solutions which may incorporate on-device biometrics into their security authentication layers, including onboarding new clients.
Spoofing issues aren’t a problem with server-side biometric solutions, which include liveness attack detection.
“We would strongly advise anyone using these phones to turn off face recognition and use the fingerprint sensor, a strong password or long PIN instead,” said Which? Tech Editor Lisa Barber.
“This needs to be a wake-up call for manufacturers – they need to step up and improve the security of their biometric systems against spoofing.”
“Smartphone Face Recognition Spoofed Says Which? Consumer Test Group.”