Nur Sharifah Idayu Mat Roh | Security Analyst
CyberSecurity Malaysia | Malaysia

Nur Sharifah Idayu Mat Roh, Security Analyst, CyberSecurity Malaysia

Ms. Nur Sharifah Idayu works for CyberSecurity Malaysia in the Malaysia Security Evaluation Facility Department as Evaluator. She is certified as EC-Council Certified Ethical Hacker (CEH), EC-Council Security Analyst (ECSA), Certified Network Engineer Lvl1 (CNE1), Certified Penetration Testing Engineer (CPTE) and Common Criteria for Evaluators. She is specialized in Biometric Technology, ISO/IEC 15408 (CC), well-verse in ISO 17025 and a practitioner of ISMS. She has various experiences in Common Criteria and IT security evaluations. The products including firewall/UTM, web application, Authentication system, IPV6, detection device and biometric scanner. She holds BSc (Hons) in Network and Mobile Computing from Coventry University UK, at Malaysia campus.


Identity Week London 2020 - Day 2 @ 11:20

Invoking the biometric fingerprint system vulnerabilities - a precis of Malaysian evaluation scheme

Ever since biometric authentication was introduced in the 18th century, it has remained as one of the most promising and anxiety provoking technology. Will it be a dream of seamless authentication process or a nation’s nightmare? To resolve this contradicting feelings, necessary security assessments have to be carried out prior to the deployment, and one of it is to evaluate its operational environment. This paper represents the part and parcel of a local scheme adapting Common Criteria for evaluating the biometric authentication system for fingerprints. As it is essential to substantiate that these systems achieve an acceptable level of security, a test method was developed and executed using selection of scenarios that will trigger the vulnerabilities. Different kinds of spoofing materials were used to attack the system. Best practices to mitigate the risk associated with the threats are also presented.
last published: 05/Mar/20 10:45 GMT
last published: 05/Mar/20 10:45 GMT
last published: 05/Mar/20 10:45 GMT

back to speakers