[nly]

Biometrics have more in common with usernames than passwords.

[TheLoneWolfling]

You can change usernames at will.

A lot harder with biometrics.

[vezzy-fnord]

Wouldn't it be more equivalent to a UUID, or am I neglecting something?

[mejari]

Same thing, really, in this context. The biometrics are what uniquely identify someone (username, UUID, whatever). The password is what provides authorization. The problem is biometrics are being treated as both the identifier and the authorization.