this post was submitted on 22 Nov 2023
499 points (98.6% liked)

Technology

59374 readers
3125 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 36 points 1 year ago* (last edited 11 months ago) (39 children)

Stop using biometrics for authentication!!!!!

Edit: lots of opinions below. Biometrics are a username, a thing you are. Finger printed can be taken from your laptop with a little powder and masking tape.

Use an authentacator app or security key kids!!

[–] [email protected] 2 points 1 year ago (16 children)

Exactly, it's fundamentally insecure.

[–] [email protected] 6 points 1 year ago (2 children)
[–] [email protected] 19 points 1 year ago (1 children)

Biometrics can be spoofed, or the body part stolen in extreme cases.

Also, in the US at least, biometrics aren't protected by the same rights that allow you to not incriminate yourself. IIRC they're considered a thing you have, which you can be compelled to surrender or use to unlock a device, vs something you know (like a password or pattern) which you can withhold if it would be incriminating. Check with a lawyer on this one, I haven't paid attention to the case law here for a bit.

[–] [email protected] 23 points 1 year ago* (last edited 1 year ago) (2 children)

If someone is stealing my body parts, what they access on my devices is the least of my worries!

[–] [email protected] 5 points 11 months ago (2 children)

They don't have to be stolen. Imagine some clever thief drugging your drink, then when you're incapacitated they take your phone and press your finger to it or hold it up to your face to unlock it, then transfer all your money out of Venmo or whatever money transfer app you have on your phone.

[–] [email protected] 6 points 11 months ago

The comment I replied to said stolen, which is what I was getting at.

There’s also nothing to stop someone watching over your shoulder to see your PIN for your phone/laptop. Nothing is infallible.

[–] [email protected] 0 points 11 months ago

God, the shit people dream up to worry themselves about. Nobody is drugging you to unlock your phone.

[–] [email protected] 4 points 11 months ago

Really? Would be up there for me. Sucks to miss a finger or eyeball, but if they've also drained my bank account and my credit card - I'm going to be even more pissed for sure.

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Ask OPM how they plan on getting my fingerprints back.

load more comments (13 replies)
load more comments (35 replies)