Amazon Go

> With our Just Walk Out Shopping experience, simply use the Amazon Go app to enter the store, take the products you want, and go! No lines, no checkout. (No, seriously.)

Yes, seems like you check-in with an app.

I saw that, but it sounds vague enough that there a few different scenarios I can think of to attack this service. Like what are they going to do if multiple people are sharing an account, but they only have photos of one?

edit: I just realized how they can deal with that -- take a picture when the person walks in and tie it to the account they scanned. There still seem to be a bunch of fraud issues, but this is certainly interesting.

Just don't share the account. That may already be part of their ToS.

They don't need to remember photos at all. Just track the person beginning at the point of scan.

It should be easy to MITM victims of powned phones unless they pay extremely close care to ping times or RTT in general.

All I have to do is pown someone's phone and use an app on my phone to make my phone look like its their phone, regardless of where they actually are. I can't imagine the facial recognition would be that good.

Its a simple extension of physically stealing phones or cloning like people did in the 80s/90s on analog AMPS. cloning is interesting to think about, steal their amazon auth info, remotely brick their phone for good luck, walk in with a burner phone claiming to be their new phone, its all good.