Pundits are missing the point on Biometrics
We continue to field questions from members about adoption rates of biometrics as part of a multifactor identification scheme.
Most media coverage focuses on the fact that as a practical matter biometrics does not yet work all that well. Here is a sampling of recent items:
Ease of stealing the information:
However there is a greater problem with biometrics–once your biometric data have been compromised, there is no way to fix things. If my password (what I know) is learned or my token (what I have) lost, those can be revoked and replaced. If someone finds a way to forge my biometric identity for a given biometric authentication implementation, what can I do about that? What I am is a dangerous means of authentication, and we probably shouldn’t even be considering biometrics as a solution so its failings are not news.Identity and Access Management