Our website uses cookies

Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing Infosecurity Magazine, you agree to our use of cookies.

Okay, I understand Learn more

The Security Design Flaws of Biometrics

Read Now

To read this magazine feature you’ll need an Infosecurity Magazine account. Log in or sign up for yours below.

Log In

Sign Up

Get up-to-the-minute news and opinions, plus access to a wide assortment of Information Security resources that will keep you current and informed.

This will be used to identify you if you take part in our online comments.
Your password should be at least six characters long. It is case sensitive. Passwords can only consist of alphanumeric characters or ~!@#$%^&*()_-+=?.

By registering you agree with our terms and conditions and privacy policy.

In my opinion, biometrics don’t follow best practice security principles and therefore fall short in many applications – particularly information security.

To answer the question ‘how can this be?’ I will offer that by-and-large, the heart of biometrics is the algorithm that drives the enrollment and matching process – speed, accuracy, how it’s tuned, etc. In general, building algorithms is an exercise for mathematicians and as a result, most biometric companies haven’t been heavily staffed with security professionals but rather mathematicians. Therefore, the quality of the algorithm can be great, but the application of it is generally left to marketers (not practitioners) who miss the mark in key areas.

Log in or register to access the full article ----->