[candiddevmike]

AFAIK face ID generates a key used to decrypt the data. Swapping the system wouldn't let you unlock it, unless it was performing a MitM against the user of the phone. Honestly most of the TPM and trusted enclave stuff Apple does is mostly to prevent that kind of MitM situation. For most users, I don't see it as a threat to worry about.

[neilalexander]

It’s even more impressive than that — the infrared dot pattern of every Face ID sensor is also physically unique. You can’t swap out Face ID sensors and keep the same enrolment data as a result because the replacement sensor will produce a slightly different pattern.

[1] https://www.apple.com/business-docs/FaceID_Security_Guide.pd...