Edit: lots of opinions below. Biometrics are a username, a thing you are. Finger printed can be taken from your laptop with a little powder and masking tape.
If your interview involves telling me a username is “something you are” rather than “something you know”, I’m running away from that job as fast as I can.
By this same logic, other people could know your fingerprint since it’s “something you are”. No, other people cannot know your fingerprint. It’s a complex mathematical equation to a computer. This is such a terrible take.
Stop using biometrics for authentication!!!
Edit: lots of opinions below. Biometrics are a username, a thing you are. Finger printed can be taken from your laptop with a little powder and masking tape.
Use an authentacator app or security key kids!!
A username is not something “you are”, it’s something “you know”. Biometrics are not nearly the same as usernames.
A username is something you are. It’s you! You are 0xD.
A password is something you know. A security key is something you have.
When we interview security analysts you don’t get past the first round if you disagree.
If your interview involves telling me a username is “something you are” rather than “something you know”, I’m running away from that job as fast as I can.
Other people know your username.
How hard is this?
By this same logic, other people could know your fingerprint since it’s “something you are”. No, other people cannot know your fingerprint. It’s a complex mathematical equation to a computer. This is such a terrible take.
Source: CASP+ certified.