Vladislav Lazarev

Lead Penetration Tester, BI.ZONE

About speaker

Lazarev Vladislav is a Lead Penetration Tester at BIZone LLC. His areas of responsibility are penetration testing, application security, red teaming and security researches. Also, he is a lecturer at the National Research Nuclear University «MEPhI», cyber security faculty. Vladislav is an active CTF player and a part of EpicTeam CTF team. Vladislav is OSCP and LPT certified.
November 16
11:00 — 12:00
Main Track
This is a complex research of modern biometric technologies and systems. The research contains description of discovered bypass methods for face recognition, voice recognition and fingerprints biometrics systems.
Windows Hello authentication with Intel RealSense infrared camera was bypassed using photoshop and inkjet printer. All you need is to take a photo of device’s owner. There will be presented some vulnerabilities about other biometric technology vendors (in process of disclose).
The research covers a face recognition technique that can be used to bypass black box 3d sensor and voice convention technique that can be used to bypass voice recognition systems. The fact that fingerprints authentication can be bypassed is well known. The research improves current methods to make the attack cheaper and easier.