Reply to post: Re: Fingerprints, versus an effective "hash" code of the print created on-board

Clock blocker: Woman sues bosses over fingerprint clock-in tech

DougS Silver badge

Re: Fingerprints, versus an effective "hash" code of the print created on-board

If someone has the hash of your fingerprint, they can use it to compare to another fingerprint by using that same hashing algorithm. That's like someone having your unsalted encrypted password, it isn't plaintext but it is not a good thing if you want to keep whatever it protects secure. A password, at least you can change that. Your fingerprint, not so much.

This why Apple makes a big deal out of the fact your fingerprint hash data never leaves the Secure Element on an iPhone (if you backup and restore it, you need to re-enroll your fingerprints because that data isn't part of the backup)

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019