Fingerprint Authentication
- Tags
- security
A form of biometric authentication that uses a persons fingerprint imprint to uniquely identify them.
This approach suffers from [see page 2, various] issues, including:
- Enrolment - Purchase (acquire) fingerprints from someone else
- Compromise the reader
- Compromise the communications from the reader to the server
- Compromise the central database (storing recorded fingerprints)
- Breath on (or cover with powder) the sensor plate to reveal recorded fingerprints
- Create a dummy finger :?
- Chop off someone's finger and use it to authenticate
- Threaten (coerce) the user
- Re-use biometrics once the user has left the system (should delete after usage).
See [see page 2, here] for a mindmap of the steps you should take to secure a fingerprint system.