[loueed]

I think Face ID could be used to create the point map, instead of generating it from an image. They could also use Face ID to prevent the tech from malicious deep fakes, e.g only allow people to use this feature I when Face ID confirms the user and the manipulated photo are the same person.

[colejohnson66]

Isn’t the point map supposedly encrypted on the Secure Enclave?[a] If it is, you can’t access it from the main CPU; you can only ask it to compare a provided one with the stored one.

[a]: I know the password is stored on it, but idk about the face mesh

[zaroth]

The verifier point cloud used for unlocking the phone must be kept in the secure element.

That doesn’t mean you can’t read a point cloud for other purposes.

They currently expose ARPointCloud API but I don’t know what sensors it uses to produce it;

https://twitter.com/nobbis/status/1292262455490629633?lang=e...