Trusted Transactions | Entersekt Blog

Trusted Transactions | Entersekt Blog

Fingerprints and the gap between identity and authentication in digital banking

Posted by Christiaan Brand, chief technology officer, Entersekt

Jul 23, 2015 10:30:00 AM

FingerprintsIdentity, security, privacy

Appleā€™s TouchID has taken the world by storm and, with official fingerprint biometric support now also coming to Android M, it looks like username and password prompts on mobile applications will soon go the way of the VCR and the gramophone player.

Still, unlike usernames and passwords, which we can change at will, we only have one set of biometric prints. If our biometrics fall into the hands of hackers, they become useless to us, forever. The consensus amongst industry experts such as the FIDO Alliance and Apple is that we must limit exposure to our private biometric data by not sharing it, keeping it instead locked down on our personal devices. In other words, that record of your fingerprint used to unlock your iPhone should never leave your device. Not even Apple has access to it.

Read More

Topics: Biometrics, Public-key cryptography, Apple, Privacy

About Trusted Transactions

Trusted Transactions is Entersekt's blog devoted to keeping our customers, prospects and friends updated with industry news, security threats and technology advances in consumer authentication. We can protect against online banking fraud and account takeovers. Trusted Transactions brings you industry data and insights to help safeguard your online and mobile banking and payments transactions. 

Subscribe to Entersekt's Blog

 

Download white paper: The importance of transaction  signing to banks  

 

Follow Entersekt