zlacker

[parent] [thread] 1 comments
1. ritzac+(OP)[view] [source] 2023-04-01 15:43:26
at the point where you regularly have to scan that combination into a potentially malicious or compromised machine that knows how to generate and transmit the hash, you may as well just trust some centralised authority to store the originals.

If someone MITMs your password, you can rotate it. A bit harder to do that with your iris.

Of course, true for fingerprint scanning too which has been around for a while, but iris kind of takes that to a new minority report level for many.

replies(1): >>capabl+Ur
2. capabl+Ur[view] [source] 2023-04-01 18:47:22
>>ritzac+(OP)
> at the point where you regularly have to scan that combination into a potentially malicious or compromised machine that knows how to generate and transmit the hash, you may as well just trust some centralised authority to store the originals.

Why would you have to do that regularly? The point is to do it once in a trusted environment and then the only thing you need to verify whatever is the hash itself, not to re-encode again and again.

[go to top]