Like, anyway we could permanently change the patern on a finger?

  • SpacePirate@lemmy.ml
    link
    fedilink
    arrow-up
    30
    arrow-down
    1
    ·
    9 months ago

    Could you? Yes. But there really is no point— biometrics alone are only a single factor for authentication.

    You should have at least two of the three— something you are (fingerprint, facial, or retinal recognition), something you have (badge, token, secure device), and something you know (passphrase).

    • Kbobabob@lemmy.world
      link
      fedilink
      arrow-up
      4
      ·
      9 months ago

      biometrics alone are only a single factor for authentication.

      I’d argue that biometrics is NOT an authentication factor but is instead a username. You’re identifying who you are.

      • SpacePirate@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        9 months ago

        Authentication is, explicitly, the process of validating that you are who you say you are. Like biometrics, your username is part of your digital identity. So you are correct in arguing that biometrics alone is little stronger than a username, but by definition, both are part of authentication.

        That said, to securely authenticate your identity, you need to use multiple factors.

    • Kyoyeou (Ki jəʊ juː)@slrpnk.netOP
      link
      fedilink
      arrow-up
      3
      ·
      9 months ago

      So, like I couldn’t even technically create a Scar on the finger by continuously creating damage at the same place to destroy some details and create new ones?

    • 0ops@lemm.ee
      link
      fedilink
      arrow-up
      2
      ·
      9 months ago

      I’ve totally had to wait for wounds to heal to recalibrate my thumbprint

    • Kyoyeou (Ki jəʊ juː)@slrpnk.netOP
      link
      fedilink
      arrow-up
      2
      arrow-down
      1
      ·
      9 months ago

      Well, like, when you save your Fingerprint in your phone it stays in a safe place in the phone, but it could get stollen if a person made a shitty product, and like, I don’t know you but I only got 10 of those

      • RedditWanderer@lemmy.world
        link
        fedilink
        arrow-up
        9
        ·
        9 months ago

        Normally phones provide an API to use your fingerprint, but the fingerprint itself isn’t shared or stored. Just like passwords there are ways of sharing this without sharing the plain data or storing it.

        It would be much easier to lift your fingerprint IRL and use it than through a website like that. At least without skipping through a lot of warnings.

        To avoid always having to login, there’s a token cached on the browser side which lately has been the target of attacks. A temporary ticket store on your computer that people copy to use for a while and access sensistive info as if they had you crendentials. With this type of attack it doesn’t matter what the password type is.

        TLDR fingerprints are as safe as any other password, which isn’t very safe.

    • guyrocket@kbin.social
      link
      fedilink
      arrow-up
      4
      ·
      9 months ago

      That was interesting and confirms what I remembered: you cannot alter your fingerprints. You can remove them, however.

      Also interesting is that fingerprinting is not as certain as most think. A match is never 100%.

  • Swerker@feddit.nu
    link
    fedilink
    arrow-up
    5
    ·
    9 months ago

    I have a scar across one of my fingers so that part of my fingerprint has changed

  • VulKendov@reddthat.com
    link
    fedilink
    arrow-up
    3
    ·
    9 months ago

    This isn’t helpful but my phone and laptop stopped being able to read my fingerprints following a stem cell transplant.

    Not sure exactly what caused it (chemo, radiation, the transplant itself) but I did have to redo my fingerprints to unlock my phone and laptop.