Hitoshi Kokumai

3 months ago · 2 min. reading time · visibility ~10 ·

chat Contact the author

thumb_up Relevant message Comment

Reality that so many security experts opt to not speak

pad a&&
="B& EE

“Touch ID and Face ID: Real biometrics or not?” https://www.biometricupdate.com/202107/touch-id-and-face-id-real-biometrics-or-not

Reading reports like the above, probably not a few people would react quickly and critically, mentioning the absence of cancellability of our body features and the privacy concerns it causes.

Few people, however, speak about the fact that the overall security is brought down to the level lower than that of a default password/PIN where the biometrics is used with a default password/PIN in a ‘two-entrance’ deployment (as against ‘two-layer’ deployment). 

This security-lowering effect is the inevitable consequence of biometrics being probabilistic, as against deterministic; body features of living animals are unpredictably variable in ever changing environment.

Here is the reality that so many security experts opt to not speak - a two-layer deployment of two authenticators decreases the attack surface, whereas a two-entrance deployment  increases the attack surface, thus providing a better convenience to bad guys as closely examined here - https://www.linkedin.com/pulse/negative-security-effect-biometrics-deployed-hitoshi-kokumai/

Secret Credenti

 
   
 

Memories

Episodic Memory

Key References 
 

 “What we need to do for NOT achieving Solid Digital Identity”

Removal of Passwords and Its Security Effect 

Negative Security Effect of Biometrics Deployed in Cyberspace

External Body Features Viewed as ‘What We Are’

Ais made of

 

 

It's a no
yiz1O.png


Additional References
 

For Achieving Solid Digital Identity on Information Security Buzz (Mar/2021)

What We Know for Certain about Authentication Factors

Digital Identity for Global Citizens
 Image-to-Code Conversion by Expanded Password System

Summary and Brief History - Expanded Password System

Proposition on How to Build Sustainable Digital Identity Platform

Account Recovery with Expanded Password System 

 History, Current Status and Future Scenarios of Expanded Password System 

Availability-First Approach 

Update: Questions and Answers - Expanded Password System and Related Issues 

74f9c834.png


 

 < Videos on YouTube>
 

Slide: Outline of Expanded Password System (3minutes 2seconds)

Digital Identity for Global Citizens (10minutes - narrated)

Demo: Simplified Operation on Smartphone for consumers (1m41s)

Demo: High-Security Operation on PC for managers (4m28s)

Demo: Simple capture and registration of pictures by users (1m26s)

Slide: Biometrics in Cyber Space - "below-one" factor authentication

USlUw.png
thumb_up Relevant message Comment
Comments

More articles from Hitoshi Kokumai

View blog
1 week ago · 3 min. reading time

Larger Attack Surface on User’s Device

I today take up this The Register report - “Client ...

3 weeks ago · 2 min. reading time

Publishing by aiTech Trend

https://aitechtrend.com/quantum-computing-and-pass ...

1 month ago · 2 min. reading time

Advantage of Biometrics Security to Criminals

Taken up today is this TechRepublic report on voic ...