• Boozilla
    link
    fedilink
    English
    07 months ago

    You can change PINs and passwords, but you cannot change your biometric data.

    It’s about as smart as using your SSN as your username.

    • @ricecake@sh.itjust.works
      link
      fedilink
      English
      37 months ago

      The point being that most people do not need to ever change their biometric data, because it isn’t used for remote authentication.

      It’s about picking the right threat model, and for most people anything that gets them using the HSM is an improvement to their security.