Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I am not interested in the X model without TouchID. FaceID provides a less secure authentication method than TouchID.

* Sleeping victims * Attacker holds the phone to your face

Its not as simple as using the 'wrong finger'. You only have one face.

This is awful, Apple. What were you thinking?



It would be trivial to simply observe which finger a person uses with Touch ID to unlock their phone (something people are doing in public every single day). Something tells me 99% of people are using at least one thumb. And then in your sleeping victim scenario the phone can still be compromised.

If you have people in your physical space while you sleep that you cannot trust to not mess with your phone, then you have other serious security problems.

That being said, I also prefer Touch ID because it still appears to be much faster. But it offers no additional security over Face ID, and based on what was said, Face ID is more secure in other ways.


Clearly you have no understanding how it works and did not watch the keynote.


I did. I guess you have more info as you are an apple engineer and are breaking NDA?


The keynote mentioned multiple times that the face must be actively engaged. Passers by or sleeping faces won't work. Maybe watch it again.


You have to actively look at the display to unlock it. So sleeping wouldn't work.


What about if you're dead? Would law enforcement, medics and/or family be able to use your (recently) deceased face to unlock? Would that be legal?


Just wait. Id rather not even deal with these scenarios at all. Where is touchID?!? Why did they ship this without it!?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: