The rise of biometrics, and why is it safer than passwords

https://itwire.com/business-it-news/security/the-rise-of-biometrics,-and-why-is-it-safer-than-passwords,-according-to-ping-identity.html

It’s really a conundrum to me how on earth it was possible for those people to decide that biometrics is safer than passwords.

Can you judge whether water is safer than your mother or vice versa? — Comparing passwords with biometrics is quite similar.

The password is deterministic while the biometrics is probabilistic. Which is safer than the other can never be decided, say, UNKNOWABLE and AGNOSTIC.

For more, please refer to “What We Know for Certain about Authentication Factors” https://www.linkedin.com/pulse/what-we-know-certain-authentication-factors-hitoshi-kokumai/

--

--

I owe this article to ‘idenhaus’ Newsletter — “AWS Focuses on Identity Access Management at re:Inforce” https://www.darkreading.com/dr-tech/aws-focuses-on-identity-access-management-at-re-inforce

  • Multi-Layer deployment; better security and poorer availability
  • Multi-Entrance deployment: better availability and poorer security

This is what I examined in “MFA: Multi-Layer or Multi-Entrance?” https://www.linkedin.com/posts/hitoshikokumai_cisa-adopt-modern-auth-now-for-exchange-activity-6948873184221749249-2QOW

and “Where ‘2’ is Weaker than ‘1’” https://www.linkedin.com/posts/hitoshikokumai_democracy-privacy-ethics-activity-6950278500830310400-6gLj

Where security matters, MFA must be multi-layer. ‘MFA in multi-entrance deployment’ must not be allowed unless security is a lower priority.

I do wish that AWS is enforcing the multi-layer deployment on security-oriented users.

--

--

I have recently published a comprehensive presentation slide at https://www.slideshare.net/HitoshiKokumai/fend-off-cybercrime-with-episodic-memory-29july2022pdf

Page 11 refers to the adoption by Japan’s Army in 2013 as Typical Use Case of our solution. There, it reads “We humbly assume that they are well satisfied with us.”

We now have to change it to “We are proudly confident that they are very satisfied with us”; We have just been told that they want us to assure them of the continued support for at least 10 more years.

The ongoing ground battle in Ukraine, which could be replayed elsewhere, might possibly be behind it. We are certainly ready to share the information with defense forces of the other democratic nations.

--

--

Hitoshi Kokumai

Hitoshi Kokumai

Advocate of ‘Identity Assurance by Our Own Volition and Memory’, Inventor of Expanded Password System and Founder of Mnemonic Identity Solutions Limited in UK.