Em 

Collecting biometrics for
supposedly flawless identification purposes is a false good idea.

Once it gets leaked, and it will inevitably at some point, this identification becomes reproducible and therefore useless. It only seems like a good idea now because not enough of it has been leaked everywhere yet. Yet...

Keep this in mind.

Protect your biometric data as much as feasible: https://infosec.exchange/@Em0nM4stodon/112572992216366084

#Privacy #Biometrics #BiometricData

Em :official_verified: (@[email protected])

Tiny Privacy Tip πŸ‘οΈπŸ”’βœ¨: Biometric data is one of the most sensitive type of data you have. Why? You cannot change biometric data like you can change a password. If your password gets leaked, you can change it easily πŸ”‘πŸ”‘πŸ”‘πŸ”‘ If your email gets leaked, it's a pain but you can change it βœ‰οΈβœ‰οΈβœ‰οΈ If your phone number gets leaked, it's an even bigger pain but you still can change it πŸ“žπŸ“ž But when your fingerprints, facial print, voice print, keystroke pattern get leaked? It's game over ☠️ You cannot change any of these. Ever. You should be extremely careful about where you are sharing your biometric data and how it is protected. For all biometrics, preventive protection is vital. #TinyPrivacyTip #Privacy #Biometrics #BiometricData

Infosec Exchange
Jun 7, 2024 at 5:23pmWeb
Show threadGavin Lux EnjoyerJun 7, 2024
@Em0nM4stodon I wonder, if you had someone’s DNA. Like via 23 and me. How hard would it be to clone a couple strands of hair? Or maybe some skin cells, could this be used to frame someone for a crime?
Show threadFlounderDec 30, 2024
@Em0nM4stodon I only use biometrics where I *also* need to provide a password (even then it's just a cope). If I was smart I'd verify that the device has a secret key that can be changed, although if I were smarter I'd be able to convince my workplace to use something else...
Show threadBai ShenDec 30, 2024
@Em0nM4stodon I will never understand how biometrics got used as a password instead of a username/identity.
Show threadMichael WeissDec 31, 2024

@baishen @Em0nM4stodon because it's identity and authentication, IF you assume that the technology is sufficiently robust that it can't be replicated via mechanical means. Some methods are easier to fake than others, but that's not so much the fault of biometrics itself as it is the measurement technology.

Authentication is generally considered some combination of something you know, something you have, and something you are. You can't use something you know without disclosing it in some way. You can't use something you have that can't be stolen or possibly replicated. And you can't provide biometric authentication in a way that may not be defeated through the measuring device.

The one thing about something you know or something you have is those are reasonably easy to change if you concluded that it was compromised. Changing something you are is nigh impossible.