From owner-freebsd-hackers@FreeBSD.ORG  Fri May  5 13:34:07 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: freebsd-hackers@freebsd.org
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9AB4016A400
	for <freebsd-hackers@freebsd.org>; Fri,  5 May 2006 13:34:07 +0000 (UTC)
	(envelope-from aanton@spintech.ro)
Received: from smtpx.spintech.ro (smtpx.spintech.ro [81.180.92.70])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 2E83043D45
	for <freebsd-hackers@freebsd.org>; Fri,  5 May 2006 13:34:07 +0000 (GMT)
	(envelope-from aanton@spintech.ro)
Received: from [10.0.0.2] (beastie [10.0.0.2])
	by smtpx.spintech.ro (Postfix) with ESMTP id 1E4EB3A4D2;
	Fri,  5 May 2006 14:08:08 +0000 (UTC)
Message-ID: <445B544D.5070107@spintech.ro>
Date: Fri, 05 May 2006 16:34:05 +0300
From: Alin-Adrian Anton <aanton@spintech.ro>
Organization: Spintech Security Systems
User-Agent: Mozilla Thunderbird 1.0 (X11/20041229)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Fredrik Lindberg <fli+freebsd-hackers@shapeshifter.se>
References: <00fb01c66fb2$a8e157c0$0501010a@ironman>	<445A5F48.60303@spintech.ro>	<200605051009.49344.doconnor@gsoft.com.au>	<445AF8AB.9080008@shapeshifter.se>	<445B35EA.5080009@spintech.ro>
	<445B48E6.3070000@shapeshifter.se>
In-Reply-To: <445B48E6.3070000@shapeshifter.se>
X-Enigmail-Version: 0.89.5.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-hackers@freebsd.org, Cesar <listas@itm.net.br>
Subject: Re: Fingerprint Authentication
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: aanton@spintech.ro
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 05 May 2006 13:34:07 -0000

Fredrik Lindberg wrote:
> 
> But that would sort of defeat the whole purpose of biometric 
> authentication and you could really just use public keys instead
> which would be a lot faster and easier than scanning your finger
> at each login. :)
> 

Unless you locally encrypt your private key with information gathered by 
the fingerprint reader, as a "password".

One can scan his finger only once, at first login, or when the system boots.

Passwords are still considered a bit more safe then a fingerprint reader 
(as far as I know).

-- 
Alin-Adrian Anton
GPG keyID 0x183087BA (B129 E8F4 7B34 15A9 0785  2F7C 5823 ABA0 1830 87BA)
gpg --keyserver pgp.mit.edu --recv-keys 0x183087BA

"It is dangerous to be right when the government is wrong." - Voltaire