摘要 |
A record-playback attack on a security system involves recording authorisation information such as passwords and playing them back to the server at a later time to unlawfully access a system. A method is disclosed for detecting record-playback of biometric information. When biometric information is provided to a server, it is always slightly different due to the nature of human input, health, etc. When two biometric input samples are substantially identical, a record-playback attack on system security is suspected and access is denied.
|