In an access control context "secure" sites that use biometrics use a three factor authentication. 1 your biometric auth 2 a password/pin 3 Personnel verification, either an ID check by a guard or something such as the U.S federal FIPS protocol. Access control using just biometric authentication is only considered to be a low security solution. The same as just using contactless cards even ones such as Mifare Desfire protocols. Regards Paul On 11/11/2015, at 3:22 PM, Peter Reutemann <fracpete(a)waikato.ac.nz> wrote:
Simply using biometrics is not very safe.
You wouldn’t use it for remote authentication, but it can work well, for example, in the physical presence of a security guard who has just checked your ID.
Remember, it’s all about using more than one authentication factor at a time.
Absolutely.
Cheers, Peter -- Peter Reutemann Dept. of Computer Science University of Waikato, NZ +64 (7) 858-5174 http://www.cms.waikato.ac.nz/~fracpete/ http://www.data-mining.co.nz/ _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug