Samsung Galaxy S8: Iris Scanner is not secure?

At the Galaxy S8 presentation conference, Samsung focused on security, explaining that the device has a high-performance iris scanner, but a team of hackers managed to bypass the system.

Google had integrated facial recognition to Android, but this option has been put aside a bit because it is very easy to bypass this barrier with a photo. This time, it is the Iris Scanner by Samsung that has been put through the test by a group of hackers who posted a video of their efforts online.

 

The hacker team at the Chaos Computer Club has found a way to bypass the security of Samsung’s latest flagship by printing a photo of the victim’s eyes that was then printed on a lens. The picture was taken in infrared mode before being scanned and resized to 1: 1 format before using a Samsung printer to print the image onto the lens. Then after scanning the photo the device was unlocked, giving access to all its contents. 

This has caused many to  be reluctant on using Samsung’s Iris Scanner, some even considering that the traditional PIN code provided much better protection for the phone. A Samsung spokesman said the South Korean giant had opened an investigation.

We are aware of the issue, but we would like to assure our customers that the iris scanning technology in the Galaxy S8 has been developed through rigorous testing to provide a high level of accuracy and prevent attempts to compromise its security, such as images of a person’s iris. If there is a potential vulnerability or the advent of a new method that challenges our efforts to ensure security at any time, we will respond as quickly as possible to resolve the issue.

Samsung has later added that it is possible to hack the iris scanner of its Galaxy S8, But the mark made a point: it is very “unlikely” that this scenario can be reproduced in a real life situation. The hacker must be able to obtain an infrared light device that is difficult to find on the market. Then, the pirate will have to photograph the iris of the person, before obtaining his smartphone. A scenario that “is unlikely to happen in real life.” The Korean giant then went on to make a point that no system is inviolable. It is also possible to trick the fingerprint sensor of the Samsung Galaxy S8 or the iPhone 7 thanks to … a piece of Sellotape!

Teaser image: © Samsung