• Venia Silente
    link
    fedilink
    English
    16 months ago

    Isn’t the idea that not everyone has access to your biometrics?

    There’s honestly no need to make computers ask people for piss scans:

    something you know

    A password

    something you have

    Access to the password

    something you are

    The person who knows the password

      • Venia Silente
        link
        fedilink
        English
        16 months ago

        But that can be said of any of the other such called factors:

        A yubikey can be stolen

        A fingerprint can be scanned and distributed

        So its not really an argument against passwords (or passkeys, or passwordless, or whatever marketing want to call them these days).

        • @[email protected]
          link
          fedilink
          English
          26 months ago

          My yubikey can be stolen but good luck guessing my PIN in the 3 to 9 tries allowed before it self destructs.

          • Venia Silente
            link
            fedilink
            English
            16 months ago

            luck? I have a $5* wrench.

            * (Actually a $7 wrench. Inflation is murder around here.)

        • boredsquirrel
          link
          fedilink
          English
          26 months ago

          Most people just need to fear their passwords being cracked remotely. In masses.

          If your threat model is being known, people stealing your stuff to login to your things, this is very high.