![]() ![]() ![]() "The client is in the hands of the enemy." - Raph Koster (Game designer, not security expert, but the advice is well applied.) Without that trusted agent, biometrics are only useful for identification, not for authentication(*). I.e., a fingerprint and a retina scan is not 2FA, but a fingerprint and a password is 2FA.īiometrics doesn't work over a network, whether you're scanning a human's fingerprints or you're "fingerprinting" a computer, since you can't verify that the client isn't lying unless you have a trusted agent standing by. You can not combine different things from the same factor and call it multifactor authentication. When dealing with humans, the three typical factors for authentication are something you know (password), something you have (TOTP device/program, phone with SMS, access to an email account, etc.), and something you are (biometrics). Multi-factor authentication is certainly possible without human intervention. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |