Increasingly, getting into concerts, sporting events and airports can be accomplished using fingerprints, hand and face shapes and more, dramatically speeding up the flow of people and reducing the stress of waiting.
Biometric identification is a quick and reasonably secure authentication method. However, even with advances in biometrics, relying on it alone can create vulnerabilities. Multi-factor authentication is still needed.
In the process of identity authentication, it is not possible to rely entirely on biometric technology. Additional information such as temperature, humidity or a combination of multiple biometric technologies such as heartbeat should be added to improve the quality of identification.
Guangjie Han
IEEE Senior Member, Professor at Hohai University (China)
People are increasingly concerned about biometric data getting exposed as part of a data breach. It’s important for users to be able to trust systems, especially when it comes to continued security adoption and moving beyond simple passwords.
The best approaches rely upon the biometric data itself not being shared. This is, for example, the approach that Apple has gone to great lengths to emphasise with its biometric implementations - the user’s data does not leave the device and is stored within a secure enclave within the processor, meaning that local apps don’t get to see it either.
Steven Furnell
Senior IEEE Member, Professor of Information Security at the University of Plymouth (U.K.)