SAM! 
Max Leibman has moved!If you access corporate email on a personal device that can be unlocked with FaceID, you must change your face at least once every sixty days.
You may not reuse any of your most recent 12 faces.
Please contact the technical support desk if you have forgotten your face and need help resetting it.
#infosec #biometrics
#infosec #biometrics
LisPi@maxleibman I'd be interested in their assistance for changing face.
The procedure is too difficult for me unassisted.
John Hudswell@maxleibman Our support desk is finding it hard to recruit: it’s hard to find people with decent tech knowledge along with mobster level face-rearranging skills.
@johnhudswell “No one wants to work anymore,” lamented Lenny “The Shark” O’Hanlon, technical support desk supervisor.
Henrik Kramselund - kramse@maxleibman have you tried turning your faceoff and on again
Holir_@maxleibman The problem at my age is proper adhesion after the required 90 day face change.
@maxleibman Can I also contact them if my face is stuck on?
Menno@maxleibman
Dingdong.... Face reset service!
Dingdong.... Face reset service!
Dave Pimlott@maxleibman I had to share this around the office as I laughed too loud.
They laughed too!
@quikkie Thank you for letting me know! A real-world boost!
Ged|Net@quikkie @maxleibman Now it's time to quaff!
K4mpfie@maxleibman Aaah that's why Arya wanted to join the Faceless Men!
Julie Webgirl
Josh@elfin @maxleibman @juliewebgirl Which face manager do you use? I use 1Face and have heard good things about FaceWarden. Stay away from LastFace, too many face leaks as of late
@maxleibman
@joshfreedman @elfin
Nothing worse than my face out in the wild.
🐧💻Sergueil💻🐧
Javier
Esther Payne 
@maxleibman This is how Repo! The genetic Opera starts isn't it. 😏
Juraj Maťaše@maxleibman Your face must contain a nose, eyes, a wart and a scar.
Collette
PJ "Vote Green" Coffey
Andreas Ringdal@maxleibman sounds like a job for Vinnie Jones
@andemann @maxleibman 🤣🤣🤣🤣🤣🤣🤣😈😈😈😈🤘🤘🤘
Matt Stewart@maxleibman our policy is to change faces every 30d, unless there's indication your face has been compromised. In that case an immediate face change is required to access company assets.
Michael@jackscerebellum @maxleibman We also enforce Strong Faces that can't be easily identified by others.
Jeff ♨️ Darcy
Graham Knapp@maxleibman I'm living this toot with fingerprint unlock and thumb surgery 😭
@graham_knapp Yikes! I wish you a speedy recovery.
Luis Rejas
waldi@maxleibman Please re-read NIST 800-63B.
@maxleibman yes but i dont have 12 faces. 
@maxleibman Botox got you covered! 🤣🤣🤣🤣
Popstar Tourist
Hugo Slabbert ⚠️@hugo people using TouchID look on nervously...
Andrew@maxleibman Looks like you will need a whole BOOK of FACES ...
Jim 
@maxleibman Not all accounts allow for self face reset. That needs to be enabled by face admins.
@maxleibman if u can change your gender once in a while, why not ur face too?
llewelly@maxleibman
shapeshifter, shapeshifter,
shift me a shape
my look has expired
and I need a new face
by biometric breach
or catastrophic leak
the fancy database
they use to ID my face
is all over the street
and soon someone will be
faking the face that was me
John Kellden@maxleibman
To reset, use your Resting ID Face
To reset, use your Resting ID Face
Cath-in-a-Hat😂🤣😂🤣😂
Thanks for the best morning laugh in a long time!
😂🤣😂🤣😂
@Myoldpiano I do what I can. 😁
Sapphic Hazard@maxleibman Only person who can actually access her phone after a year is going to be the witch from Return to Oz. 😅
Kerry Tomlinson@maxleibman So that's what they mean by self-effacing, or should we say 'self e-facing.'
Martin Wiedemann
Murphy's Lawyer@maxleibman @SpeakerToManagers
I’m currently discussing Bring Your Own Disaster and am so going to use this…
Dr.Susan Bushinski@maxleibman lol just reminded me my work password is due to change in 12 days- it has gotten so ridiculous the parameters you must meet for your password I got it down pack now- as long as I don’t run out of colors and professional sport team names I can last until seven more years until retirement
wanderer_j@maxleibman I’m thinking this will be the premise for Face-Off 2 with John Travolta and Nicholas Cage
DaCool@maxleibman In a similar vain.
Had a lock screen pin with 9 digits on my work-supplied Android.
Outlook on that phone demanded a safer pin for the device, the last 4 digits were descending. Apparently a big no-no.
Tried only the first four digits of that same pin, it worked.
Now my work phone only has a 4 digit pin because modern big-corpo digital security is a circus show.
@DaCool I was actually thinking about the PIN rules for our MDM when I thought of the faces joke. We have a similar rule—a six-digit PIN is required, but you can't have three or more consecutive ascending or descending digits. (And not just sequential—"981" would trip the rule.)
No, despite how often I invoke the hashtag, I am not an #infosec professional, but: if you are constrained to a universe of only a million possible PINs, why eliminate tens (hundreds?) of thousands of possibilities?
@maxleibman When people busy themselves writing "guidelines" instead of, gee, making this stuff secure and convenient on a factual basis.
<Insert Password XKCD here>
My workplaces larger overlord org still uses the abysmal "Use a new password every X months" rule despite all IT's petitions and recommendations of MS and standardisation bodies against it.
Ticking checkboxes instead of making an actual effort always rubs me wrong.
Caddi@martyn infosec information for you
@martyn can I reuse. If so I'll just turn round and use the eyes in the back of my head! (not two faced). 😂
Michael Holroyd@maxleibman
😂😂😂
I tried to set a face that would take about 14 million years to brute force crack.
Now it's stuck that way.
Mom always told me, "If you make a face ..."
Smh
jprestonian