Exploiting the iPad's Glowing Keyboard 127
nonprofiteer writes "Earlier this week, a South African security researcher released shoulderPad, an app that's designed to auto-snoop on iPad users' passwords by watching their touchscreen keyboards. When a user types on an iPad's touchscreen, each key glows blue for a fraction of a second after it's struck, a helpful bit of feedback for any virtual keyboard. ShoulderPad's image recognition algorithms, based on Open CV's open source image recognition software, look for that flash of blue. 'At any distance, if the blue is distinguishable, shoulderPad can detect that keystroke,' says Meer."
Re:It's not even that hard (Score:4, Interesting)
Schneier wrote some time ago about the advantages of visible passwords [schneier.com]. One (small) shitstorm later he compiled an interesting pro/con list [schneier.com].