Hackers Trick Samsung Galaxy S8 Iris Recognition Using a Printed Photo and a Contact Lens

German hackers have successfully broken the iris recognition authentication in the Samsung Galaxy S8 using equipment that costs less than the price of the smartphone, according to Ars Technica.

Hackers with the Chaos Computer Club used a digital camera, a Samsung laser printer, and a contact lens to achieve the feat. The hack involved taking a picture of the phone owner's face, printing it out on paper, carefully placing the contact lens on the iris in the printout, and holding the image in front of the locked Galaxy S8.


The video shown above was posted by the hackers to demonstrate the process in action. The photo doesn't have to be a close-up shot, although using night-shot mode or removing the infrared filter helps, according to the hackers.

The hack comes despite the fact that both Samsung and Princeton Identity, the manufacturer of the authentication technology, say iris recognition provides "airtight security" that allows consumers to "finally trust that their phones are protected". Princeton Identity have also said the Samsung partnership "brings us one step closer to making iris recognition the standard for user authentication."

The Galaxy S8 is one of the first flagship phones to offer iris recognition as a convenient alternative to using a passcode or fingerprint, but the hackers said they suspect future mobile devices that offer iris recognition may be equally easy to hack. Apple is widely expected to include the feature alongside Touch ID and face recognition in this year's much-rumored OLED iPhone, although the possible origins of the technology remain unclear.

Apple has already trademarked "Iris Engine", presumably in relation to the upcoming feature, with its acquisition of companies such as Faceshift and PrimeSense lending credence to the suggestion that Apple is developing its own solution for the so-called "iPhone 8". One report has claimed that Taiwan-based supplier Xintec, an affiliate of Apple manufacturer TSMC, is mass-producing the iris recognition chips for Apple.

Samsung reportedly added a facial recognition capability to the Galaxy S8 because of doubts about the reliability of iris scanning on its own, but the security of the facial recognition itself came into question almost immediately, when a photo of a user's face was used to unlock a handset at the S8 launch event.

Related Forum: iPhone

Popular Stories

iPhone 17 Pro Dual Tone Feature 1

iPhone 17 Pro Launching Later This Year With These 8 New Features

Thursday January 9, 2025 5:45 am PST by
While the iPhone 17 Pro and iPhone 17 Pro Max are not expected to launch until September, there are already plenty of rumors about the devices. iPhone 17 Pro concept based on rumors Below, we recap key changes rumored for the iPhone 17 Pro models as of January 2025: More aluminum: iPhone 17 Pro models are rumored to have an aluminum frame, whereas the iPhone 15 Pro and iPhone 16 Pro models ...
HomePod mini and Apple TV

HomePod Mini 2 and New Apple TV Launch Timeframe Narrowed Down

Sunday January 12, 2025 4:11 pm PST by
Bloomberg's Mark Gurman recently reported that Apple plans to release new HomePod mini and Apple TV models this year, and now he has provided a more precise timeframe. In his Power On newsletter today, Gurman said Apple is currently aiming to launch the new HomePod mini and Apple TV models "toward the end of the year." That timeframe suggests the devices will be released at some point...
AppleEventLogoFeature

Apple Focusing on These Eight New Low-Cost Devices in 2025

Saturday January 11, 2025 1:00 am PST by
Apple's slate of 2025 products look to be dominated by a large number of low-cost and entry-level devices. Here's what to expect. With advancements like Apple Intelligence and all-new in-house chip designs, Apple is reportedly looking to enhance many of its budget-friendly offerings, ensuring they remain competitive in an increasingly crowded market. These updates also indicate a slight...
iPhone 17 Pro Dual Tone Horizontal 1

iPhone 17 Pro Main Camera Sensor 'Smaller' Than iPhone 16 Pro Sensor

Friday January 10, 2025 3:14 am PST by
This year's iPhone 17 Pro models will feature a smaller main camera sensor than the one used in the Fusion camera currently found in iPhone 16 Pro models, according to Weibo-based leaker Digital Chat Station. The Chinese leaker claims that Apple will adopt a 1/1.3" sensor for the 48MP main camera in the iPhone 17 Pro and iPhone 17 Pro Max, down from the 1/1.28" sensor used in the iPhone 16...
se 4 for 2025

When to Expect the iPhone SE 4 or So-Called 'iPhone 16E' to Launch

Friday January 10, 2025 9:20 am PST by
Apple is widely rumored to be planning a new iPhone SE, and multiple sources lately have commented on the device's launch timing. The latest word comes from Apple supply chain analyst Ming-Chi Kuo. In a blog post today, he said the device will be released around the middle of the first half of 2025. In other words, around the quarter mark of 2025. That means the next iPhone SE will likely be ...
airpods pro 2 botw

Hearing a Mysterious Chime From Your AirPods Pro Case? It's a Feature

Thursday January 9, 2025 3:42 pm PST by
If you've been hearing a chiming sound from your AirPods Pro 2 case when the AirPods are charging, it's a feature that Apple added with the launch of Hearing Health last year. In a support guide, Apple says that the AirPods Pro may play a sound every so often while in the case to ensure the microphones and speakers are working as intended. From Apple: To help ensure that your AirPods...
Generic iOS 18

iOS 18.3 Coming Soon: Here's What's New

Monday January 13, 2025 5:33 am PST by
iOS 18.3 is currently in beta for developers and public beta testers. So far, the upcoming iPhone software update is very minor in scope. Below, we outline what is new in iOS 18.3 so far. The only potential new feature coming to iPhones with iOS 18.3 so far is robot vacuum support in the Home app, but this functionality is not yet live. Apple is laying the groundwork for the feature,...
apple pay feature dynamic island

Apple Pay Now Lets You Pay Later With Synchrony [Updated]

Friday January 10, 2025 11:34 am PST by
Synchrony is now available as a buy-now, pay-later option when checking out with Apple Pay online and in apps on iPhone and iPad. Synchrony was added to a list of Apple Pay installment providers in the U.S. in an Apple support document that was updated today, joining Affirm and Klarna. The addition was spotted by MacRumors contributor Aaron Perris. iOS 18 and iPadOS 18 users can select...

Top Rated Comments

keysofanxiety Avatar
100 months ago
Ah that blog post from Princeton Identity...
In our daily lives, we almost always confirm the identity of the people who we know using a version of biometrics – we recognize the face, the body size and shape, and the voice of our friends, family and coworkers.
I can't help but imagine lots of people having conversations with cardboard cutouts of their coworkers and not knowing the difference.

They also tricked Touch ID btw
By replicating a fingerprint in identical detail, yes. It's like 'tricking' a door by creating the exact key which fits the lock. Samsung's door, on the other hand, would simply creak open by whistling into the lock like a Shaman Throat Warbler. :D
Score: 53 Votes (Like | Disagree)
Nik Avatar
100 months ago
They also tricked Touch ID btw. With a photograph + wax. For Samsung you need Photograph + Contact Lens. Not much different. Both systems are not secure.
Score: 32 Votes (Like | Disagree)
Zirel Avatar
100 months ago
Iris -> Siri
Both worthless. Who would have thought?
So worthless, that Apple received multiple awards for its use by disabled people...
Score: 26 Votes (Like | Disagree)
tdream Avatar
100 months ago
Samsung security is worthless because hackers found a way to steal a sample of your saliva, reengineer a perfect clone of you using stem cells and dna material left on your starbucks coffee cup. Now they've stolen your wife, family and kids, house, bank accounts, dog and collection of baseball cards.
Score: 22 Votes (Like | Disagree)
TheShadowKnows! Avatar
100 months ago
Iris -> Siri
Both worthless. Who would have thought?
Score: 16 Votes (Like | Disagree)
44267547 Avatar
100 months ago
So Samsungs gimmick feature got hacked,No doubt Finger print scanner is more secure than this iris scanner.
@Sunny1990. Actually, you're incorrect. Iris scanning is far more secure than a fingerprint scanner.

The iris is the colored pattern part of your eye. It is developed when you're approximately a year old or so. An eye injury or death, apparently never changes after the fact. Fingerprints can likely be duplicated one out of 50,000 as where Iris scanning is more similar to one out of 1 million. It uses infrared and a camera to detect the Iris.

Iris scanning is also expected to be 5/6 times more secure than a fingerprint and accurate in reading, because it contains more unique information about you and makes it highly more accurate/reliable than fingerprint scanning. Fingerprint scanning can be duplicated .

http://science.howstuffworks.com/biometrics4.htm

http://findbiometrics.com/solutions/iris-scanners-recognition/
Score: 16 Votes (Like | Disagree)