To be honest, biometric authentication isn't a bad idea for something like a lightning wallet. Bluewallet hooks into android's biometric system, for example.
The purpose of biometrics isn't really to provide a highly secure environment, its for convenience. If there were a shortcoming, it would be the false sense of security it affords. As long as people understand its not much more secure than the Schlage lock on the front of their house (que the Lock Picking Lawyer)
As we all know, the best security is combining something you have with something you know. But in the case of standing outside in -40 degree weather and in the blinding sun, you don't want to be messing around with 12 character passwords and yubi-keys every time you need fill your tank.
There is, of course, a fallacy with regard to biometrics. Its not really something you have, and its certainly not something you know. Anyone with a camera or a duster and some technology can fake your irises or fingerprints. Sure, fingerprint sensors have improved over time and are harder to fake than the original 1960's optical-only prism based ones, but nonetheless you leave your fingerprints literally everywhere you go.
Lets be realistic here, a hardware wallet regardless of its access-control safegards, is yet another false sense of security. Everything can be hacked, and absent actual encryption with a symmetric key that is separate from the device (like a password), there will always be a way to draw out the secret information contained within.
The primary use-case for a biometric hardware wallet is either to impress your friends (you shouldn't be flashing anything with a whole bitcoin on it in front of your friends), or to have a way of carrying around some spending-bitcoin with you but keep it separate from your phone. In short, it would serve as a single-app smartphone for crypto transactions, and you can do that with your old iPhone.
reply
The worst idea I've ever heard.
reply
Have my reservations with biometrics. Still, I think options are good, as long as there's choice.
Personally, I don't understand why unlock/pin codes don't support longer strings and special characters for unlocking phones.
reply
If the fingerprinting is optional, I don't have a problem with it. And it seems like it will be.
reply
“We believe PINs, passwords, and seed phrases are confusing and often not secure given the workarounds normal people have to create given all the friction.
“Instead, to achieve seamless authentication in practice, we plan to incorporate a fingerprint sensor into the wallet hardware.”
reply
Can't say I would be thrilled to use a feature like this, the more analog the less chance of issues and why do we want to use unnecessary data to access our wallets, sure it can be a option, but I personally wouldn't be using it
reply
From the article:
“We believe PINs, passwords, and seed phrases are confusing and often not secure given the workarounds normal people have to create given all the friction,” the company said in a Friday statement. “Instead, to achieve seamless authentication in practice, we plan to incorporate a fingerprint sensor into the wallet hardware.”
Block acknowledges this approach has its own tradeoffs, but claimed that it would increase security against theft or misuse of the hardware wallet.
“We’re aware of limitations we’ll need to design around,” the statement reads. “As we build the product, we'll evaluate additional access methods that customers could opt into. And of course, fingerprint sensor data will never leave the hardware device.”
reply
Link to another article discussing the drawbacks of biometric authentication: https://www.ifsecglobal.com/cyber-security/4-drawbacks-of-biometric-authentication/
reply