da_667
You'll never convince me that biometrics are a well thought-out form of authentication.
Jun 7 at 3:48pmWeb
Show threadda_6671d ago
stop using them to lock your phone. Use a password. Biometrics can be compelled by the pigs with no repercussions. They ask you for a passwrd? You can tell them to eat shit.
Show threadda_6671d ago
"lockdown mode" won't save you when you're fucking zip cuffed to the ground during a protest or just minding your fucking business, and can't touch the screen to activate it.
Show threadgary1d ago
@da_667
Show threadsoup1d ago
@da_667 given how poorly thought out everything else turns out to be I am more than inclined to agree with you
Show threadGraham Sutherland / Polynomial1d ago

@da_667 I did a talk on this with a colleague at Cisco's internal conference, where we analysed a bunch of biometric factors like fingerprint, voice print, facial biometrics, etc. in terms of various security properties.

TL;DR biometrics are useful as a second or third factor but sole-factor biometric authentication is a really bad idea.

Show threadGraham Sutherland / Polynomial1d ago
@da_667 one case study we did was at an org who rolled out voice print auth for password resets to reduce support ticket burden. I expected it to be bad, but it was all sorts of weird. people with monotone voices could be spoofed most of the time just by putting on a monotone voice. we bypassed auth a few times just by laughing instead of reading out the auth phrase.
Show threadGraham Sutherland / Polynomial1d ago
@da_667 and, as always, biometric authentication systems' accuracies *always* drop when the user is not a white guy.
Show threadPaul_IPv61d ago

@da_667

i hate them. aside from legal problems and technical problems, there is the repudiation problem. my retina scan has been stolen. how do i get a new eye?