Re: Standard biometric flaw
Does it matter? A swipe pattern or 4 digit PIN isn't secure either, and can often be figured out just by looking at the smear pattern on the screen. Many people still just use the "swipe left to unlock" thing, because all they want is something to stop them accidentally pressing things while their phone is in their pocket, not a security feature to prevent people with physical access to the hardware from being able to hack it. Sure, biometrics (at least as presented so far) are not good enough for real security, but they're still harder to fool than the most common measures currently in use. Getting a picture of someone's eyeball is more difficult than noticing the picnic table shaped smear in the middle of their screen.
Anyone who thinks biometrics like this will solve all our security problems is obviously wrong, But anyone who thinks that just because they won't solve all our problems they must be completely useless is just as wrong. Is it more secure and/or more convenient than other common measures? If so, it doesn't have to be perfect in order to be useful.
I find by far the biggest flaw is one that hardly seems to get a mention - I don't want to have my phone locked to my person. If I'm driving, for example, it's quite handy to get someone else to mess around with music, satnav, etc.. I don't care how secure biometrics might be if it means I can't let someone else use my phone. Hell, facial recognition and iris scanning mean even I can't use it if I'm in a situation where I can't stick the phone in my face for some reason (again, skipping music while driving is a common situation, or even just turning the screen off until I reach the part of the journey where I actually need directions).