Reply to post: Bio metrics is local to device

Microsoft promises end-to-end encrypted Teams calls for some, invites you to go passwordless with Azure AD

thondwe

Bio metrics is local to device

So most people on here will use a password manager to remember long and complex passwords? So have one master password for the manager.

The FIDO tech essentially the same thing - something to unlock the local password database (happens to be held in a TPM chip on a PC/[phone/key), rather than an encrypted database) - this is either a PIN (so device stolen, PIN socially engineered - hacker in) or bio-metric (can be hacked, just a bit harder?).

Once the database is "open" the secure password is used - password-less just replaces pasting the password into a text box with a much better public/private key exchange.

The actual pain point is that only works for a limited number of systems - so you still need "real" passwords for "legacy" systems.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021