Yiiiikes, a mask tricked Apple’s new Face ID feature. Vietnamese security firm Bkav Corporation recently held a demo pointing out flaws in the iPhone X’s facial recognition, claiming the technology is not as secure as Apple originally touted.
Bkav Corporation focuses on network security, anti-virus software, and mobile security software. Bkav Corp created a 3D mask that “beat” Face ID in a demonstration. The mask was crafted with a combination of 3D printing and 2D images.
When verifying users, Face ID takes photos using infrared cameras. The first photo creates the surface of the face then the second pic makes a mesh, reproducing the face in 3D. From there, Face ID uses AI technology to distinguish faces.
The 2D/3D hybrid is meant to throw off the AI feature specifically. According to Bkav’s VP of Cyber Security Ngo Tuan Anh, “Apple’s AI can only distinguish either a 100% real face or a 100% fake one. So if you create a ‘half-real half-fake’ face, it can fool Apple’s AI.”
Face ID is supposed to have a one million-to-one chance of false recognition.
Compared to Touch ID’s potential fail rate of fifty thousand-to-one, Face ID is meant to be way more secure. However, the risk of a false recognition increases with identical twins, siblings, and children under the age of thirteen since their facial features aren’t finished developing.
When iPhone X launched, Apple stated they worked with professional Hollywood mask makers and makeup artists to ensure Face ID couldn’t be fooled by masks or other prosthetics. While Apple noted Face ID should still work if users get haircuts, change facial hair, or sometimes wear glasses, masks weren’t part of the good-to-go features for unlocking phones.
If you’re one of the adopters of iPhone X, don’t start freaking out yet though. To create their mask, Bkav had to use a handheld scanner to get pictures of their target’s face. As in, the person whose phone they were trying to hack had to be in the same room to get the initial scans.
Plus, Bkav could have intentionally done a subpar job of setting up the Face ID. The obvious solution if you’re still worried? Add a passcode as well and don’t trust anyone who wants to make a mask of your face.
Read also: Do literally anything with your money besides buy the iPhone X
Lindsay is an editor for The American Genius with a Communication Studies degree and English minor from Southwestern University. Lindsay is interested in social interactions across and through various media, particularly television, and will gladly hyper-analyze cartoons and comics with anyone, cats included.
Pingback: Facial Recognition thinks you might be a toaster, really