Reality that so many security experts opt to not speak
“Touch ID and Face ID: Real biometrics or not?” https://www.biometricupdate.com/202107/touch-id-and-face-id-real-biometrics-or-not
Reading reports like the above, probably not a few people would react quickly and critically, mentioning the absence of cancellability of our body features and the privacy concerns it causes.
Few people, however, speak about the fact that the overall security is brought down to the level lower than that of a default password/PIN where the biometrics is used with a default password/PIN in a ‘two-entrance’ deployment (as against ‘two-layer’ deployment).
This security-lowering effect is the inevitable consequence of biometrics being probabilistic, as against deterministic; body features of living animals are unpredictably variable in ever changing environment.
Here is the reality that so many security experts opt to not speak - a two-layer deployment of two authenticators decreases the attack surface, whereas a two-entrance deployment increases the attack surface, thus providing a better convenience to bad guys as closely examined here - https://www.linkedin.com/pulse/negative-security-effect-biometrics-deployed-hitoshi-kokumai/
Key References
“What we need to do for NOT achieving Solid Digital Identity”
Removal of Passwords and Its Security Effect
Negative Security Effect of Biometrics Deployed in Cyberspace
External Body Features Viewed as ‘What We Are’
Additional References
For Achieving Solid Digital Identity on Information Security Buzz (Mar/2021)
What We Know for Certain about Authentication Factors
Digital Identity for Global Citizens
Image-to-Code Conversion by Expanded Password System
Summary and Brief History - Expanded Password System
Proposition on How to Build Sustainable Digital Identity Platform
Account Recovery with Expanded Password System
History, Current Status and Future Scenarios of Expanded Password System
Update: Questions and Answers - Expanded Password System and Related Issues
< Videos on YouTube>
Slide: Outline of Expanded Password System (3minutes 2seconds)
Digital Identity for Global Citizens (10minutes - narrated)
Demo: Simplified Operation on Smartphone for consumers (1m41s)
Demo: High-Security Operation on PC for managers (4m28s)
Demo: Simple capture and registration of pictures by users (1m26s)
Slide: Biometrics in Cyber Space - "below-one" factor authentication
Articles from Hitoshi Kokumai
View blog
Today's topic is BBC's “Facebook to end use of facial recognition software” · https://www.bbc.com/n ...
Another topic for today is “Passwordless made simple with user empowerment” · https://www.securitym ...
I would like to take up this somewhat puzzling report - “Google advises passwords are good, spear ph ...
You may be interested in these jobs
-
Security and Fire Engineer
Found in: Jooble UK O C2 - 4 days ago
Zitko Group Ltd United KingdomElectronic Security and Fire Detection Engineer - North West (Liverpool/Manchester) · Electronic Security and Fire Detection Engineer · Monday – Friday, 8.As a Electronic Security and Fire Detection Engineer, you will be responsible for the servicing and maintenance of fire and ...
-
Registered Nurse
Found in: beBee Professionals UK - 3 days ago
Direct apply
beBee Professionals England, United Kingdom Full timeResponsibilities: · - Provide compassionate and skilled nursing care to patients. · - Assess patient conditions and develop individualized care plans. · - Administer medications and treatments as prescribed. · - Monitor patient vital signs and report any changes to healthcare tea ...
-
Part-time Supply Teacher
Found in: Jooble UK O C2 - 6 days ago
Academics Ltd Aylesbury, Buckinghamshire, United Kingdom Part timeAcademics are on the hunt for reliable, motivated and flexible primary school teachers that are looking to work on a daily/ short-term basis within primary schools in Aylesbury · Are you looking to have a better work/life balance? · Would you like to build a wider knowledge of th ...
Comments