Security Ring denies intruders when you're away

by Darren Murph posted Jul 20th 2007 at 9:29AM

Fingerprint scanners are so 2004. Yang Hai, an artist who apparently appreciates utility, has conjured up a concept that aims to make biometrics on PCs a thing of the past, as his aptly-dubbed Security Ring makes certain that no one can peruse your files while you're away. The device enables the user to select a lock down distance, and when the ring bearer exceeds that parameter (or simply heads to the lavatory), the connected PC locks out intruders and only opens up when its master returns. Talk about a hit waiting to happen in the corporate space.

Filed under: Desktops, Wearables

Tags: concept, design, ring, security

Subscribe to these comments

Reader Comments (Page 1 of 1)

Neutral

kevink @ Jul 20th 2007 9:38AM

Wouldn't that be like a lot less secure then biometrics?

Neutral

egåroht @ Jul 20th 2007 9:47AM

What could possibly be less secure than biometrics? Anyone can get to your finger prints from the the door knob or your iris scan from a close-up photo.

Neutral

Mr. Vage @ Jul 20th 2007 10:53AM

Watch the Mythbusters episode where they defeat a fingerprint scanner with a piece of paper.

Neutral

nyleharris @ Jul 20th 2007 11:48AM

they didnt defeat that myth with a piece of paper. It took them about 4 different attempts and three days, and they actually used a ballistic gel to accurately do it. Most fingerprint scanners also allow the user to set an accuracy rate of the fingerprint up to 99%, and the mythbusters episode didnt show what that level was set to, meaning it could have been set anywhere far underneath that. The one they defeated also appeared to be an optical type,( "read" and then compared) which is far more accessible than the more protected galvanized systems.

Neutral

Trent @ Jul 20th 2007 12:22PM

Any computer can be fooled. The problem with biometrics is that it's actually pretty easy to get a copy of said biometric. Finger prints are trivial to acquire in that you leave them on everything you touch. A facial recognition system can be defeated with a picture, and iris recognition systems can also be defeated by pictures. How you ask? A high resolution facial shot with a flash will also photograph the iris, blow it up some and crop it and the scanner won't know the difference. It's also probably possible to place this photograph on a flexible substrate and embed it in an opaque contact lens (although this is likely well beyond anything but highly advanced espionage).

The problem with biometrics is not that they aren't unique, it's that the computer that is comparing them can be easily fooled. A computer can't tell the difference between a photograph and a real person because they look the same to the computer.

Honestly, all you do by requiring multilevel authentication is add a little tiny bit more difficulty in cracking. The reality boils down to the fact that biometrics offer no security advantage over passwords. The only way biometrics become secure is if you position a real human guard to watch and confirm the authentication so that fooling the computer becomes very very difficult.

Now if you talking about casual theft of a personal laptop, multi level protection may protect the contents, but for real security (ie Corporate or national) it's a joke.

Neutral

Wwhat @ Jul 20th 2007 5:03PM

I'm told that in japan they use a scanner that scans the veins under you finger as biometrics a lot.
I think that's a pretty good idea, it's simple, it's secure, you must be alive, and you don't leave copies of it on everything you touch.

Highly Ranked

Chris @ Jul 20th 2007 9:42AM

If I make a silly 3D rendering of a conceptual device, can I make the front page too?

Neutral

Lenny @ Jul 20th 2007 9:50AM

Realistically none of these are as safe as a good password. As long as its in your head, no one can steal it. Now if your stupid enough to write it down, its no longer secure, but both biometrics and any physical device can be stolen.

Highly Ranked

Jerome @ Jul 20th 2007 9:51AM

press “windows logo” + “L” to lock your computer. Try it NOW!!

Screw the ring!

J-

Low Ranked

Natedog @ Jul 20th 2007 10:15AM

Alt+F4 does it too...

Highly Ranked

Cory @ Jul 20th 2007 10:16AM

I would try "Windows key + L" but someone seems to have conveniently forgotten to put a Windows key on my Unix machine's keyboard...

Anyway, my major problem with that ring is that it just downright looks like crap.

Neutral

Wwhat @ Jul 20th 2007 5:00PM

You seriously found a keyboard without a windows key? might be that you use linux or something but a keyboard without windows key? now that's radical

Neutral

Jerome @ Jul 20th 2007 9:36PM

Hey Natedog, If people are pressing ALT + F4, I know why you are Lowest Ranked! HAHAHAHAHA!!!

Neutral

Samo @ Jul 20th 2007 9:54AM

Bah... I'm using a better product that's not dissimilar (sp?) to this... It uses bluetooth tech to check if my phone (which stays on me at all times) is within range, and if not, it'll lock the comp, and auto unlocks when I'm back! Granted, you need to buy a BT dongle and a phone, but the latter is an non arguement because almost everyone has a BT enabled mobile.

It's just my 2 cents on this product.. it's been done already, without having (too much) more hardware.

P.s., I didn't name the s/w because you guys might think I'm a sales rep for those guys or something ;)

Neutral

Roger Rees @ Jul 20th 2007 10:07AM

Well I'd like to know what the software is!

Neutral

Christian Martin @ Jul 20th 2007 10:18AM

Actually, I'd be interested to know what it is. Sounds like it's worth tinkering with.

Neutral

Leoedin @ Jul 20th 2007 10:29AM

Please do name it!

Neutral

Paul Chan @ Jul 20th 2007 11:04AM

yeah, i was about to say it i needed to do that i can just use the bluetooth on my phone!!
i've seen usb locks with keyrings which lock the computer when i goes out of range of a few meters, basically doing the same thing, but costly only £10 and doesn't mean you have this massive metal ring which will be big and heavy coz presumably there will be a battery inside it

Neutral

LinuxIdiot @ Jul 20th 2007 11:19AM

I am guessing the software is LockItNow! I just found it by searching google with "bluetooth locks computer until return"

I may have to give it a try for my laptop! :D

Neutral

Will @ Jul 20th 2007 12:32PM

I'm pretty sure Salling Clicker has this functionality built into it and also allows for remote control of iTunes, WMP, Powerpoint, etc.
Has been a while since I've used it though.

Neutral

Samo @ Jul 20th 2007 5:39PM

Actually, Will is right; I use Salling Clicker on all my home PCs... It's a nice software which I use to remote control all said PCs... esp good when you have a PC linked to a living room TV.

On the BT connections, you can have it set up so that the PC is locked whe you are out of range. I do recommend it as a PC remote

Blimey, I do sound like a sales rep now, but you guys are pretty interested, I guess ;)

Neutral

Mickey @ Jul 20th 2007 5:43PM

Just what Jerome said: Win + L. It takes a second, and with a good password, it's secure--not to mention economical. I can't imagine that other operating systems lack a similar feature.

Highly Ranked

Andrew Jones @ Jul 20th 2007 10:06AM

So - this device would require a system admin to have the one ring to rule them all?

Neutral

jimeagle @ Jul 20th 2007 10:07AM

You can do this anyway with your phone using bluetooth.

Neutral

PJK @ Jul 20th 2007 10:07AM

I see a lot of severed fingers on the menu for anyone who buys this.

Neutral

Christian Martin @ Jul 20th 2007 10:18AM

There's a USB dongle/keychain combo that does this already. I got two of them from Woot.com over a year ago.

Neutral

Jimmie @ Jul 20th 2007 10:19AM

Damn, I forgot my ring at home! Guess I can't work today ;-)

Wonder how often that would happen.

Highly Ranked

Gollum @ Jul 20th 2007 10:24AM

My Precious...

Neutral

rob @ Jul 20th 2007 8:24PM

I was waiting for an LOTR comment.

Neutral

randy @ Jul 20th 2007 11:34AM

oh, like a password?

Neutral

Ed @ Jul 20th 2007 12:06PM

Unfortunatly this device (like the usb dongle thingies) will only lock the SCREEN of the computer. It doesn't lock the computer its self. In fact, if you have dual screens, only the active screen identified as the first screen will lock. These would be much better products if they hooked into the Windows Lock APIs
Ed
web/gadget guru

Neutral

Nick @ Jul 20th 2007 1:23PM

Rohos, USB lock... two factor authentication.... something you know and something you have. Check it out.

Highly Ranked

Mike @ Jul 20th 2007 12:06PM

I would like to congratulate Engadget users for posting a whopping 17 comments on this article before referencing Lord of the Rings.

Neutral

johnzilla @ Jul 20th 2007 12:07PM

This is so old.

There have been similar rings in use for 10 years or more, since the first JavaOne conference put on by Sun in SF, circa 1997. I still have one of the original rings jostling around in my junk drawer.

http://www.maxim-ic.com/products/ibutton/

The only difference is the "lock down distance" done wirelessly, which, as others have noted, is also not new.

Neutral

johnzilla @ Jul 20th 2007 12:08PM

Already done.

http://www.maxim-ic.com/products/ibutton/solutions/product.cfm?ID=249

Neutral

Wwhat @ Jul 20th 2007 5:15PM

And http://sitecom.com/product.php?productname=Wireless+PC+lock&productcode=CN-129&productid=293&subgroupid=2

Neutral

Josh @ Jul 20th 2007 12:40PM

So is everything going to be shrunk down to a ring? I remember an alarm clock on here not long back that was also a ring.

Neutral

Jim Kerr @ Jul 23rd 2007 10:37AM

Being afraid of using a biometric scanner for a fingerprint is so 2002!

Biometrics have come a long way in the past 2 years. Ceelox.com has biometric based security software that never stores an image of your fingerprint but rather an algorithm that represents the minutia points of your finger. This renders the chance of spoofing to 10 to the 7th power. Even if someone were to hack the algorithm the system would detect the exact number being fed as a spoof. Also the latest scanners will measure your finger's capacitance which is going to read your finger's electrical charge...a replicated finger with a lifted fingerprint will not give you access anymore. A hacked off finger won't work either!

Neutral

Wwhat @ Jul 20th 2007 5:11PM

The scan of the veins in your finger thing is best I think, no copies are left all over and you must be alive so it's pretty secure and yet respects privacy somewhat.
And about the '2002' quip, surely if something is bad in the past it doesn't become suddenly great a few years later (except for fascism maybe..)
And using keypoints is what's always been used. And capacitance? that is never constant so that's BS, lie detectors work partly by measuring difference in capacitance while you speak, so it's so inconsistent it can't be unique and so can easily be spoofed if you try to use it in fingerprint scanner.

Neutral

Jim Kerr @ Jul 23rd 2007 10:58AM

Things can't become great in a few years????? What? One year in technology is like 10 years...Hi def TV's, cell phones, satelite radio...mp3's ...IPOD's...the computer you are using? Have these things not been dramatically improved upon in just a few years? Biometric readers have also dramatically improved right along with these things so I am not buying that fascism is the only thing that can be improved quickly..Capacitance is very consistent when in comes to detecting weather a person is using a real live finger or a man made fake...so in the context of what it is used for it is very reliable. Again the chances of spoofing the latest biometric reader is 10 to the 7th power and is much more convenient and safer then fat fingering in your username and password...

Neutral

teall @ Jul 23rd 2007 10:39AM

The scan of the veins in your fingers may be very good as is Iris as well as facial and a lot of other things. The problem is they cost too much and how are you going to set up a vein scanner on a laptop or even a flash drive.
The technology advances in the last 3 years with finger prints is pretty amazing. And your statement that key points have always been used is slightly inaccurate. Whether we are using an AFIS system or a non AFIS system, yes we are looking at the points on a finger print. But the big difference is with the older scanner type systems, the ones that work like a copy machine. They kept pictures of your finger print and matched them based on the points on the print but were actually comparing the pictures.. The new systems now don’t take pictures of your finger. They use a mathematical mapping of your finger that is encrypted. Even if you could hack the encryption and somehow get the formula, an exact copy will not work. The software is built to look for slight variations, in other words exact matches don’t match. As for your capacitance BS statement, well that is what it is BS. It is not a lie detector test, it is not looking for changes in capacitance, which is what a Polygraph test looks for. It is looking for capacitance meaning whether you have it or not. Can you fool it yes if you want to take the time and try to create an electric charge, sure. Or you could blow up the system you are trying to steal info from. But that is really not the point. The point is this. I could spend weeks coming up with a way to fool your biometric finger print device. And it would take weeks. How long is it going to take me to figure out your password. 5 min with freeware crackers. Maybe less if I really know what I am doing. It is like having an alarm on your house. If I am a burglar I am probably going to hit your neighbor’s house that doesn’t have an alarm, because it is easy.

Neutral