Skip to main content
  1. Home
  2. Mobile
  3. News

Heavy sleepers, beware: Researchers bypass Apple FaceID using glasses with tape

By

Heavy sleepers should probably not leave their iPhones lying around, after a team of security researchers exposed a vulnerability with the FaceID facial recognition system using an ordinary pair of glasses and two colors of tape.

In the session at Black Hat USA 2019 titled Biometric Authentication Under Threat: Liveness Detection Hacking, researchers from Tencent demonstrated how to exploit a specific vulnerability in FaceID.

Recommended Videos

Liveness detection is part of the biometric authentication process that separates real facial features from the fake ones. Part of the process is determining whether a person is awake with eyes open, or asleep with eyes closed. If the iris and pupil are not detected, then the device will not unlock.

Related

Meanwhile, Apple’s facial recognition system allows iPhone owners to unlock their devices even while they are wearing glasses. However, once FaceID detects glasses, it skips extracting information from the eye area.

Combining these two features, the Tencent researchers figured out a way to bypass FaceID by sticking black tape on the center of each lens, and then white tape in the middle of each black tape. The black tape and white tape represent the iris and pupil, respectively.

Once the glasses are worn by victims, holding up their iPhone to their faces will trick FaceID and unlock the devices, giving the attacker access.

Regular iPhone owners will not have to worry about the FaceID vulnerability, as it will be difficult to put glasses on sleeping people without waking them up. The exploit will be effective when the victim is unconscious though, which will probably raise more alarms than an unlocked iPhone.

The method presented by the Tencent researchers is similar to the adversarial glasses that have baffled facial recognition systems. There have been other ways of fooling the technology such as a baseball cap studded with LEDs and a mash-up of a mask, but the glasses with tape trick appears to be the easiest to pull off so far.

Apple itself was at the Black Hat conference to announce an expanded bug bounty program that will pay $1 million for researchers who can discover a “zero-click full chain kernel execution attack with persistence.”

Editors’ Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received a NES and a copy of Super Mario Bros. for Christmas when he was 4 years old, and he has been fascinated with…
Does the iPhone 14 have a fingerprint sensor? Here’s what happened to Touch ID
iPhone 14 laying in a succulent.

Apple made quite a stir nine years ago when it unveiled the iPhone 5s with Touch ID. It was the first time Apple had put a fingerprint sensor into an iPhone, and it redefined how folks interacted with their Apple mobile devices.

Gone was the hassle of keying in a passcode to secure your iPhone — or living without one just because it was too much trouble. Touch ID promised better security through convenience, and it quickly became a core feature of not just Apple’s iPhone lineup but also iPads, MacBooks, and eventually even an external iMac keyboard.

Read more
Apple may finally ditch the iPhone’s notch/pill in 2024
iPhone 13 Pro's smaller notch compared to the iPhone 12 Pro's larger notch.

After years of sporting a distinctive notch, the iPhone may finally shed the divisive feature with the iPhone 16 in 2024. There will be no hole punches either, according to Apple analyst Ming-Chi Kuo. It'll be the first iPhone with an uninterrupted full-front display.

"I think the real full-screen iPhone will come in 2024. High-end iPhones in 2024 would adopt an under-display front camera alongside the under-display Face ID. A lowlight condition is detrimental to front camera quality, and [Image Signal Processor and]  algorithm are critical for quality improvements," Kuo said.

Read more
Apple faces more supply issues due to manufacturing halt
foxconn china tariffs could make iphone more expensive manufacturing

The production of Apple products has been halted in three major manufacturing plants across Shanghai due to the Chinese government's current COVID-19 restrictions. Two of the production companies affected, Pegatron and Quanta, assemble iPhones and MacBooks for the tech giant and are unsure as to when they'll be back up and running following this halt in production. Compal, a company that assembles the company's iPads, will also be halting production temporarily.

Pegatron, the company that runs two Shanghai-based iPhone manufacturing plants, told Nikkei Asia that it hopes to "resume production soon," however it wasn't able to supply any concrete information on when that might be. Quanta's MacBook production has similarly been on hold since the start of April, with no hopes of reopening in sight due to the latest wave of COVID-19 that's been making its way throughout the world.

Read more