[clug] Biometrics and Linux

Alfred alfred at mazuma.net.au
Sun Feb 22 22:14:38 GMT 2004


<snip>
> I'm not a big fan of biometric identification, since it's impossible to 
> revoke such ID should it be compromised. It's also impossible to store 
> your fingerprints securely, since anyone who wants a copy only has to 
> hand you a (clean) glass of (room temperature) wine. We've all seen 
> Charlie's Angels, right?
> 

I have always lived by the 3 pillars of user authentication:
1) Something they know
2) Something they have
3) Something about them

Having just one is very fragile to attack, 2 is robust and 3 is rock 
solid :)

(I believe I first found this idea in Applied Cryptography by Bruce 
Schneier).

- Alfred


More information about the linux mailing list