Windows Hello?
Ok, that name is TERRIBLE. Especially since you can guarantee that the first person with a blog will simply inject a comma and a question mark if it fails to identify them. In other words, the name of the service can easily be made to mock itself. "Windows, Hello?".
I've already said in the past that I'm not a huge fan of bio-metric passwords. I get that they seem more secure. And in many cases they are. If your passwords aren't complex, use the same ones everywhere and can be guessed with only a little personal information... then yes. Biometrics will be more secure every time.
There is however one MASSIVELY large fault in biometric passwords. They CANNOT CHANGE... EVER. If *somehow* your biometric credentials are compromised... you can't just login and change your iris or your face or your fingerprint. And the societal delusion around the absolute security of biometrics makes using compromised biometric credentials all the more easy to use to exploit other areas of your life. Apple, with ApplePay according to some for instance is able to circumvent certain policies to validate you identity with financial institutions.
I'm not against biometric passwords. But, I think that to attain any real degree of security they need to be just a second factor of authentication. Combining biometrics with something simple like a PIN# means you have security inherent in biometric passwords and an element you can change should your account become compromised.
I've already said in the past that I'm not a huge fan of bio-metric passwords. I get that they seem more secure. And in many cases they are. If your passwords aren't complex, use the same ones everywhere and can be guessed with only a little personal information... then yes. Biometrics will be more secure every time.
There is however one MASSIVELY large fault in biometric passwords. They CANNOT CHANGE... EVER. If *somehow* your biometric credentials are compromised... you can't just login and change your iris or your face or your fingerprint. And the societal delusion around the absolute security of biometrics makes using compromised biometric credentials all the more easy to use to exploit other areas of your life. Apple, with ApplePay according to some for instance is able to circumvent certain policies to validate you identity with financial institutions.
I'm not against biometric passwords. But, I think that to attain any real degree of security they need to be just a second factor of authentication. Combining biometrics with something simple like a PIN# means you have security inherent in biometric passwords and an element you can change should your account become compromised.
Comments
Post a Comment