April 28, 2015 By Douglas Bonderud 2 min read

Passwords are passe; fingerprints are falling out of fashion. Enter Bodyprint, a new effort from Yahoo’s Research Labs, which looks to transform users into walking, talking, smartphone-using passwords. Anything from ears to knuckles to the barest edge of fingertips can be used to unlock mobile devices. Biometrics are taking the security world by storm, with patent applications for biometric technologies up from 46 just 10 years ago to 567 last year. Is Yahoo’s new offering the first wave of the future?

The Ears Have It

As reported by The Hacker News, this new biometric technology is looking to toss out fingerprints and traditional passwords in favor of a system that supports users’ natural habits. Have an incoming call? Bodyprint uses an ear impression to grant access. Want to encrypt sensitive documents? It’s possible to use knuckles, a set of five fingers around screen edges or the palm of a hand.

What’s more, it doesn’t require any extra technology, relying on a smartphone’s own capacitive touch screen rather than specialized fingerprint sensors. Because displays have lower resolution, bigger images are necessary for authentication, which is part of the reason scanned body parts must be much larger than fingerprints.

In its first public foray at the 2015 Computer Human Interaction conference in Seoul, South Korea, the application correctly identified bodyprints and their owners 99.98 percent of the time, but the Yahoo team has plans for more testing and algorithm improvement before it takes the product mainstream.

Private and Public

The evolution of biometric technologies raises a number of ethical questions concerning mandatory use and government oversight, but as noted by David Cowan of Bessemer Venture Partners, there is also a problem with theft.

“Once your fingerprint is stolen, it’s stolen forever, and you’re stuck,” he said.

The same goes for the shape of an ear, knuckle dimples or any other user characteristic. Fingerprint scanners are regularly duped by fake prints days after they debut in app stores. Does the rise of large-scale biometrics point to the emergence of a market where ear scans and palm prints are exchanged for big money?

Meanwhile, CBR predicts biometrics will be inextricably linked to the Internet of Things. This is already happening due to wearable fitness monitors and the development of a “human sat nav” at the University of Hanover, which helps direct users with the help of tiny electrical jolts. Bodyprint and similar initiatives offer a way to gate this type of access in a way that’s intuitive but still secure, and without the ability to “forget” or “lose” necessary access keys.

It’s no surprise nonfingerprint alternatives for smartphone security are cropping up, and so far, the technology looks promising. However, long-term success depends on both overall software accuracy and the readiness of users to embrace this type of person-to-password revolution.

Image Source: iStock

More from

Skills shortage directly tied to financial loss in data breaches

2 min read - The cybersecurity skills gap continues to widen, with serious consequences for organizations worldwide. According to IBM's 2024 Cost Of A Data Breach Report, more than half of breached organizations now face severe security staffing shortages, a whopping 26.2% increase from the previous year.And that's expensive. This skills deficit adds an average of $1.76 million in additional breach costs.The shortage spans both technical cybersecurity skills and adjacent competencies. Cloud security, threat intelligence analysis and incident response capabilities are in high demand. Equally…

Cyberattack on American Water: A warning to critical infrastructure

3 min read - American Water, the largest publicly traded United States water and wastewater utility, recently experienced a cybersecurity incident that forced the company to disconnect key systems, including its customer billing platform. As the company’s investigation continues, there are growing concerns about the vulnerabilities that persist in the water sector, which has increasingly become a target for cyberattacks. The breach is a stark reminder of the critical infrastructure risks that have long plagued the industry. While the water utility has confirmed that…

What’s behind unchecked CVE proliferation, and what to do about it

4 min read - The volume of Common Vulnerabilities and Exposures (CVEs) has reached staggering levels, placing immense pressure on organizations' cyber defenses. According to SecurityScorecard, there were 29,000 vulnerabilities recorded in 2023, and by mid-2024, nearly 27,500 had already been identified.Meanwhile, Coalition's 2024 Cyber Threat Index forecasts that the total number of CVEs for 2024 will hit 34,888—a 25% increase compared to the previous year. This upward trend presents a significant challenge for organizations trying to manage vulnerabilities and mitigate potential exploits.What’s behind…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today