Hacker News new | ask | show | jobs
by skyeto 1297 days ago
The idea is that you aren't giving away any kind of biometric data, just using your fingerprint/face-unlock/etc to "unlock" the key used for signing the request locally.

It could also be implemented in a way where it's behind a password instead of biometrics. Yubikey and the likes already use this method.
1 comments
jjgreen 1297 days ago
Make your fingers valuable to violent and ruthless miscreants, good move!
link
gruez 1297 days ago
As opposed to violent and ruthless miscreants beating the password out of you?
link
jjgreen 1297 days ago
Ouch! OK OK, my password is "please-dont-take-my-fingers"
link
OtomotO 1297 days ago
No need for a beating if I can just tell them... they can take the password with them.

Or they can take the fingers with them.

link