Comments on: Biometrics to the rescue

By: Mopy

Mopy — Thu, 19 Jun 2008 10:48:25 +0000

Somehow i missed the point. Probably lost in translation Anyway … nice blog to visit.

cheers, Mopy.

By: Julian

Julian — Fri, 20 Apr 2007 15:24:10 +0000

And hi to you right back. Grab a chair, get some coffee, stick around.

Regarding passwords and thumbprints, yeah it’s all 1’s and 0’s in the end. If you can steal one, you can steal the other. I suppose a possible solution would be to start encrypting both. I imagine even a simple 128-bit key (which is about the standard, or below the standard nowadays as I understand it) would be more trouble than the farmers would like to put up with.

That’s probably a good middle point between passwords in the wild and biometrics: encrypted passwords. It won’t solve the the problem of them being stolen, but at least most farmers couldn’t use them. I doubt they’re gonna set up to crunch and crack the encryption on the passwords they collect. Although you never know.

By: Cameron Sorden

Cameron Sorden — Fri, 20 Apr 2007 15:09:48 +0000

Convenience is king for most consumers. Rotating passwords is far too much of a hassle, since you need to do it for ALL your services (and none of them should be the same, ideally). So yeah, we do need a new solution to the problem as more people (and thus, more scammers) start to clue in that virtual assets DO have real value.

Would biometrics really be more secure though? I feel like it’s just a password in digital form that you can’t change. Sure, it’s more complicated to steal and spoof than a conventional password, but once you’ve got the data for someone’s thumb-print, well, they’re pretty much SOL, right? You can’t get a new pattern burned on. That’s why I’m skeptical of widespread use of biometrics.

Hi, by the way! I found by way here by following your comment on Kill Ten Rats. You’re on my blog roll now.