From owner-freebsd-security  Wed Jun 19  8: 9: 8 2002
Delivered-To: freebsd-security@freebsd.org
Received: from clever.eusc.inter.net (clever.eusc.inter.net [213.73.101.4])
	by hub.freebsd.org (Postfix) with ESMTP id 09F3E37B48B
	for <freebsd-security@freebsd.org>; Wed, 19 Jun 2002 08:07:56 -0700 (PDT)
Received: from m023-szombathely.dial.elender.hu ([212.108.216.23] helo=ebizlab.hit.bme.hu)
	by clever.eusc.inter.net with esmtp (Exim 3.36 #1)
	id 17Kh3p-0000FX-00; Wed, 19 Jun 2002 17:07:54 +0200
Message-ID: <3D109F35.9080106@ebizlab.hit.bme.hu>
Date: Wed, 19 Jun 2002 17:11:49 +0200
From: Bognar Attila <attila@ebizlab.hit.bme.hu>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.0) Gecko/20020530
X-Accept-Language: en-us, en, hu, fr
MIME-Version: 1.0
To: Michael Sierchio <kudzu@tenebras.com>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: Password security
References: <000c01c2174c$5a38f230$77fe180c@armageddon> <xzpr8j3ipbp.fsf@flood.ping.uio.no> <3D109329.8050007@tenebras.com>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi,

> It's very useful for two-factor (or n-factor) authentication --
> I have no idea how extensive your familiarity with biometric
> methods is, but several are quite promising.  Some of the better
> ones (hand geometry) aren't suited to embedding in a laptop...

The fact that biometric scanners are getting better and better does not 
mean that the applications using biometrics are good enough.  There are 
two big problems: privacy and the fact that you have only 10 fingers, 2 
hands... (the biometric patterns are quite "precious", they should be 
handled with _very_ big care - an encrypted channel is far from being a 
solution for other than trivial problems).

attila

ps: hand geometry based identification is not one of the best biometric 
methods for security critical applications (where uniqueness should be 
very important)



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message