It was bad enough having muggers chop off your fingers so they could use fingerprint recognition systems, now they'll need to gouge out your eyes as well! This is getting pretty mediaeval
Japanese users will be able to log in and make online purchases using iris recognition biometrics after telco giant DOCOMO begins shipping Fujitsu ARROWS phones. The telco's 65 million users will be able to use the biometric verification on the ARROWS F-04G said to be the world's first iris snapper. Fingerprint biometric …
Indeed. There's no security in this. It's all about marketing crap at the indolent ignorant.
Expect a tiny disclaimer to be buried somewhere near the end of the devices' manuals, where no one will ever see it, just "for legal reasons", to the effect of: Do not rely on this "security" crapware for anything requiring actual security now will you? Mmmmmmkay.
Only a fool would attempt to do e-commerce on your smart phone. It's not secure at all. Phones are public facing and have no firewalls you'd have to be an idiot to participate. And governments have been going hard trying to get malware on phones. All it would take is for that iris signature to be sniffed.
I think it's a great idea but cabled into a computer or part of a computer that doesn't have malware built into the hardware of course and behind a firewall.
FIDO is sadly promoting biometrics in a wrong manner.
Biometric authentication could be a candidate for displacing the password if/when (only if/when) it has stopped depending on a password to be registered in case of false rejection while keeping the near-zero false acceptance.
We could be certain that biometrics would help for better security only when it is operated together with another factor by AND/Conjunction (we need to go through both of the two), not when operated with another factor by OR/Disjunction (we need only to go through either one of the two) as in the cases of Touch ID and many other biometric products on the market that require a backup/fallback password, which only increase the convenience by bringing down the security.
In short, biometric solutions could be recommended to the people who want convenience but should not be recommended to those who need security. Below is a brief slide titled “Password-Dependent Password-Killer” posted with respect to this theme.
Biting the hand that feeds IT © 1998–2019