what do you think about Biometrie
Eugen Leitl
eugen@leitl.org
Tue Sep 3 12:46:02 2002
On Tue, 3 Sep 2002, Matthias Bruestle wrote:
> You don't want to. Say you use your thumbprint instead of a passphrase.
> Everytime you touch something with your thumb you are leaving your passphrase
> behind.
There are reasons why biometrics suck (largely, you can't revoke and
reissue new ones, they're not all that reliable, and you can fake them
with finite effort), but you're citing a worst case.
Just use the iris pattern, the vein pattern in your palm, etc. The more
of them you use the lower is the probability that you can fake them (and
higher the number of false alarms, of course).
Don't use biometrics standalone. But they sure can supplement a secret,
making overall for a higher resistance to attacks.