undefined | Better HN

0 pointsculturestate5y ago0 comments

But why couldn't the device handle your biometric authentication? Your 12-year-old son can't (hopefully) steal your face or your fingerprint.

0 comments

3 comments · 1 top-level

dane-pgp5y ago· 2 in thread

You might be able to avoid a central database of biometric data, but who is going to certify the accuracy of these biometric authentication devices?

Presumably if a manufacturer made a device that didn't actually bother checking the fingerprint, the systems that integrate with these devices would have to refuse to accept claims from it.

culturestateOP5y ago

If this were an interoperable standard, I imagine the pool of "approved issuers" would be relatively small, limited to e.g. governments or banks. Bloomberg uses a system not entirely dissimilar to this[1], and I could see Apple and Google building an OS API that the issuers' apps would use specifically for this.

1. https://security.stackexchange.com/questions/101862/what-adv...

dane-pgp5y ago

Yup, and I could see governments demanding that these devices have "lawful interception" capability, allowing the biometric data to be scooped up with individual warrants, or in bulk with a National Security Letter, to "catch all the terrorists".

j / k navigate · click thread line to collapse