SammiejFeb 20

When your password leaks:
→ Change your password
→ Problem solved

When your biometric data leaks:
→ You can't change your face
→ You can't change your fingerprints
→ The compromise is permanent
→ Your biometric data is in breach databases forever

This is why facial recognition for age verification is dangerous.

#Biometrics #Privacy #Discord

Show threadDavid W. Jones

@capitainesam So maybe you combine biometrics with password/passkey?

One of the foundational stories of cyberpunk illustrated a defense against biometrics fraud. The hackers targeted a victim that used fingerprint login. They managed to get a copy of the victim's fingerprint and used it.

Then the victim's security system kicked in - because the victim always deliberately *failed* the first finger login and used their *second* finger login...

Feb 20 at 11:48pmWeb
Show threadvrekFeb 21
@dancingtreefrog @capitainesam I'm curious and a fan of cyberpunk... What book are you referring to?
Show threadDavid W. JonesFeb 21
@vrek @capitainesam I seem to recall that it was William Gibson's Neuromancer; the incident that lead to the main character's nervous system being crippled by the Russian mafia. But it's been awhile since I read it, I could be mistaken.
Show threadvrekFeb 21
@dancingtreefrog @capitainesam hmm... I read that too but same as you it's been over a decade, might be time for a re-read
Show threaddstuFeb 21

@dancingtreefrog @vrek @capitainesam I think you're describing Orson Scott Card's "Dogwalker," which involves intuiting a password but failing to realize that the target always miskeyed the first time until too late.

"Neuromancer" does have a character who is neurologically crippled by their employer (with a "wartime Russian mycotoxin"). ("He'd made the classic mistake, the one he'd sworn he'd never make. He stole from his employers.")

Show threadvrekFeb 21
@trurl @dancingtreefrog @capitainesam thanks for the clarification. I have been avoiding Orson Scott card because of his actions at conventions previously, although I have read enders game. That said I'm due for a re-read of nueromancer.
Show threadErin, OSHA DenialistFeb 21
@dancingtreefrog @capitainesam ngl i wish of a registring a fingerprint which instead of unlock would just block it completely.
Show threadDavid W. JonesFeb 21
@erindesu @capitainesam I've heard of Android apps that could do that, something phone owners could activate when under duress. Sorry, I don't know the names of any of them!
Show threadananasFeb 21
@dancingtreefrog @erindesu @capitainesam It's called lockdown mode and I think that's a standard android feature now (not OEM-dependent) available as an option after long press of a power button
Show threadDavid W. JonesFeb 21
@ananas @erindesu @capitainesam Ah, thanks! I knew Apple has that capability.
Show threadMercutioFeb 21

@dancingtreefrog
Why copy? Just get the finger. With or without the human hanging on it.

@capitainesam

Show threadmarco_m_aus_fFeb 21
@Mercutio @dancingtreefrog @capitainesam That is something good fingerprint readers will detect. You get way better chances of success with a copy. Needs a print on a surface, a bit of superglue and a printer.
Show threadMeko #nowarFeb 22
@Mercutio @dancingtreefrog @capitainesam you can also get a good quality photo of person's hands 
Show threadChloé RaccoonFeb 23

@Mercutio @dancingtreefrog @capitainesam @patterfloof
In my head now:

KRYTEN: Logically, sir, there is only one way you could have possibly
have opened that door. I feel quite nauseous. Where is it?
LISTER: Where's what?
KRYTEN: Oh, sir!! You've got it in your jacket!!
LISTER: I got us out of the hold, didn't I?
KRYTEN: Sir, you are sick! You are a sick, sick person! How can you
possibly even conceive of such an idea?

Show threadskaphleFeb 21
@dancingtreefrog @capitainesam GrapheneOS supports a pin as second factor for biometrics