07-19-17 03:30 PM
tools
  1. anon(8679041)'s Avatar
    anon(8679041)
    Thanks
    07-10-17 06:01 AM
  2. Ment's Avatar
    Ment
    Neither, your actual fingerprint isn't used for authentication. a mathematical value is used that results from using a limited data set from several points on your finger such as the relation of some whorls to another and then applying a math formula to it called a hash.

    How many data points that are used and the cryptographic math is of course a closely guarded secret but in the end no your fingerprint as the FBI or other government agencies might have it are not given to BB or Google.
  3. Ment's Avatar
    Ment
    Neither, your actual fingerprint isn't used for authentication. a mathematical value is used that results from using a limited data set from several points on your finger such as the relation of some whorls to another and then applying a math formula to it called a hash.

    How many data points that are used and the cryptographic math is of course a closely guarded secret but in the end no your fingerprint as the FBI or other government agencies might have it are not given to BB or Google.
    anon(8679041), TGR1, FF22 and 2 others like this.
    07-10-17 06:46 AM
  4. Emaderton3's Avatar
    Emaderton3
    Trusted Member
    So, the info is stored in the phone lol.

    Posted via CB10
    07-10-17 07:42 AM
  5. anon(8679041)'s Avatar
    anon(8679041)
    Originally Posted by Emaderton3
    So, the info is stored in the phone lol.
    Yeah, interesting to know that.
    07-10-17 01:20 PM
  6. Mercuryuser's Avatar
    Mercuryuser
    The rothschilds have them
    JWW and muindor like this.
    07-10-17 01:22 PM
  8. nuff_said's Avatar
    nuff_said
    First your fingerprint. Then your retinal scan. Now face recognition.

    The government man! They are building a database with our information to store, track, and record our every move!

    *running to get my tinfoil hat
    anon(8679041) and FF22 like this.
    07-10-17 02:27 PM
  9. app_Developer's Avatar
    app_Developer
    Trusted Member
    Originally Posted by Emaderton3
    So, the info is stored in the phone lol.
    I don't understand what's funny about that?

    The hash is stored in a secure element on the phone where the OS and CPU do not have access. All the OS can ask is basically "yes or no, does the digit just presented match one of the registered digits?"
    07-10-17 03:46 PM
  10. Emaderton3's Avatar
    Emaderton3
    Trusted Member
    Originally Posted by app_Developer
    I don't understand what's funny about that?

    The hash is stored in a secure element on the phone where the OS and CPU do not have access. All the OS can ask is basically "yes or no, does the digit just presented match one of the registered digits?"
    It was in response to the first answer which was extremely long and complicated. The OP's question needed just a simple answer.

    Posted via CB10
    07-10-17 03:54 PM
  11. app_Developer's Avatar
    app_Developer
    Trusted Member
    Originally Posted by Emaderton3
    It was in response to the first answer which was extremely long and complicated. The OP's question needed just a simple answer.
    Ah, I see. I thought it was a good explanation, though, because the data stored is actually specific to the device. So there is no way to steal fingerprints from the device since the fingerprint image itself is not stored.
    fankuan and anon(8679041) like this.
    07-10-17 04:00 PM
  12. anon(10065266)'s Avatar
    anon(10065266)
    [QUOTE=Emaderton3;12956489]It was in response to the first answer which was extremely long and complicated. The OP's question needed just a simple answer.

    "Extremely" long and complicated? Seriously lol. The first answer was relevant and interesting.
    anon(8679041) and viv424 like this.
    07-10-17 04:07 PM
  13. Emaderton3's Avatar
    Emaderton3
    Trusted Member
    [QUOTE=BriannaJL;12956496]
    Originally Posted by Emaderton3
    It was in response to the first answer which was extremely long and complicated. The OP's question needed just a simple answer.

    "Extremely" long and complicated? Seriously lol. The first answer was relevant and interesting.
    My bad then.

    Posted via CB10
    07-10-17 05:02 PM
  14. Ment's Avatar
    Ment
    yes your actual FP is not in your phone otherwise there would be no need to use your FP again if you reset/restarted the process to add the capability to use your FP to unlock your phone/apps.

    Therefore when you reset/restart it the process uses some other data points in your FP, creates a math value from hash, stores it encrypted in Secure Element(IOS) or TrustZone(ARM) and so on.
    07-10-17 05:16 PM
  15. Soulstream's Avatar
    Soulstream
    Trusted Member
    Also since it's not a fingerprint that's stored, but a hashed value based on your fingerprint, even if by some means somebody gets the hashed value from you phone it cant' be easily transformed back into your fingerprint.

    Finding out what dataset generated a hash (if the hashing algorithm is good) can only be done by brute force attack which takes a long long time.
    anon(8679041) likes this.
    07-11-17 04:27 AM
  16. Elephant_Canyon's Avatar
    Elephant_Canyon
    Originally Posted by Soulstream
    Also since it's not a fingerprint that's stored, but a hashed value based on your fingerprint, even if by some means somebody gets the hashed value from you phone it cant' be easily transformed back into your fingerprint.

    Finding out what dataset generated a hash (if the hashing algorithm is good) can only be done by brute force attack which takes a long long time.
    Just so your point is clear, in this case, "a long, long time" is measured in decades.
    07-11-17 03:07 PM
  17. nuff_said's Avatar
    nuff_said
    @Elephant_Canyon and @Soulstream

    Question if I may: if the fingerprint isn't stored and based on a hashed value why is it, when going to register a fingerprint on my D60, the message reads, "your fingerprint may be less secure than a strong pattern or PIN."

    Not saying you guys are wrong but trying to understand why this message might be showing. I'm sure a fingerprint is more secure than my picture password and I'd like to move onto the fingerprint as my unlocking method of choice.
    07-16-17 04:40 PM
  18. Soulstream's Avatar
    Soulstream
    Trusted Member
    Originally Posted by nuff_said
    @Elephant_Canyon and @Soulstream

    Question if I may: if the fingerprint isn't stored and based on a hashed value why is it, when going to register a fingerprint on my D60, the message reads, "your fingerprint may be less secure than a strong pattern or PIN."

    Not saying you guys are wrong but trying to understand why this message might be showing. I'm sure a fingerprint is more secure than my picture password and I'd like to move onto the fingerprint as my unlocking method of choice.
    Because, theoretically, someone can unlock your phone in your sleep by putting your finger on the sensor.

    Another extreme scenario is someone cutting your finger for unlocking your phone.
    anon(8679041) likes this.
    07-16-17 04:43 PM
  19. thurask's Avatar
    thurask
    Trusted Member
    Ambassador
    Originally Posted by nuff_said
    @Elephant_Canyon and @Soulstream

    Question if I may: if the fingerprint isn't stored and based on a hashed value why is it, when going to register a fingerprint on my D60, the message reads, "your fingerprint may be less secure than a strong pattern or PIN."

    Not saying you guys are wrong but trying to understand why this message might be showing. I'm sure a fingerprint is more secure than my picture password and I'd like to move onto the fingerprint as my unlocking method of choice.
    This might help:
    https://android.stackexchange.com/qu.../135944#135944
    07-16-17 04:43 PM
  20. nuff_said's Avatar
    nuff_said
    Originally Posted by Soulstream

    Another extreme scenario is someone cutting your finger for unlocking your phone.
    Lol

    Even if I stuck with a PIN and someone wanted it cutting off my finger would work. I'd sing like a canary
    07-19-17 02:58 PM
  21. anon(10268214)'s Avatar
    anon(10268214)
    If you are that worried about the nefarious use of your fingerprint to open your device, lock it with the screen lock. If you do your password will need to be entered (of you have one set up, Lol) to unlock it. The fingerprint will not work. There is a shortcut for screen lock provided in the BlackBerry launcher.
    07-19-17 03:30 PM
« KEYone Macro | Touch keyboard stopped working »

Similar Threads

  1. Why does my Phone not turn on Display(Passport after water damage)?
    By Oak Weedman in forum BlackBerry Passport
    Replies: 9
    Last Post: 07-13-17, 03:01 PM
  2. Blackberry flash notification app apk
    By vipu gethan in forum More for your BlackBerry 10 Phone!
    Replies: 6
    Last Post: 07-13-17, 05:50 AM
  3. Why does my Phone not turn on Display(Passport after water damage)?
    By Oak Weedman in forum BlackBerry Passport
    Replies: 7
    Last Post: 07-10-17, 08:59 PM
  4. My blackberry Q10 display gradually disappeared. Why ?
    By aperofm91 in forum Ask a Question
    Replies: 1
    Last Post: 07-10-17, 02:02 PM
LINK TO POST COPIED TO CLIPBOARD