[helthanatos]

Good passkeys also should only exist to be checked on the device. Fingerprints can be in databases and on the device itself. Not sure how fingerprint scanners react to replicated fingerprints, but the right people can probably replicate them pretty well. I would only consider a fingerprint a more secure authentication measure because it can't be recorded by cameras.

[wiml]

> the right people can probably replicate them pretty well

They can be fooled reasonably well (well enough to fool an iphone) with pretty simple techniques. For details, search for a bunch of articles from 2002 referencing Tsutomu Matsumoto's work.

> it can't be recorded by cameras

Well... http://www.theregister.co.uk/2014/12/29/german_minister_fing... https://news.ycombinator.com/item?id=12611155

[greggarious]

Plus many countries demand fingerprints to enter. (Japan, for example)

[c22]

Finger prints can be (and have been) recorded by cameras.

[helthanatos]

I meant it's a lot harder to record fingerprints... It's relatively easy for a camera from almost any angle to record touches on the phone (especially with many phone's animations that show the number touched)