[mirkules]

The thing about a fingerprint or even a dna sample, in this use case is that you send your signature ahead of time and verify yourself phyisically at the party. Does your fingerprint hash match your fingerprint? That is more difficult (but not impossible) to spoof. At the end of the day, this discussion stems from notion that government ids are unreliable as a means of verification. Granted, but for what we are trying to achieve in practice is preservation of privacy and data. I was trying to point out that identification of a person - true identification - can be at conflict with our ultimate goal of privacy, since we have to give up a piece of data to prove we are who we say we are, and contemplated finding a way to technically make it happen (in practice) without sacrificing PII.

[growse]

I see what you mean - you could probably do something like publish your public key and then publish a signed copy of your fingerprint hash. Anyone else could do the same thing, but an imposter wouldn't be able to convincingly produce your fingerprint on demand when physically present. At least, not without a lot of funding and cleverness.

[willvarfar]

So you are tying the key to fingerprints or other biometric, but how do you tie that to an identity e.g. a name?