What is Biometric Authentication?
Using physical characteristics like fingerprints, face geometry, iris patterns, or voice to verify identity.
Biometric authentication uses your body as a password. It's convenient but comes with unique privacy risks.
Common Types
- Fingerprint: Touch ID, in-display sensors
- Face recognition: Face ID, Windows Hello
- Iris scanning: Used in some high-security systems
- Voice recognition: Voice assistants, phone banking
Advantages
- Can't be forgotten or lost
- Difficult to share or steal
- Fast and convenient
Privacy Risks
- Irrevocable: You can't change your fingerprints after a breach
- Coercible: Fingerprints can be forced; passwords can be "forgotten"
- Surveillance: Biometric databases enable mass identification
- Accuracy: False match rates affect some demographics more than others
Best Practice
Use biometrics for device unlock convenience, but pair with a strong PIN/passphrase. Never use biometrics as the sole authentication factor for critical accounts.
Related Terms
Biometrics
Authentication using unique physical or behavioral characteristics like fingerprints, facial features, iris patterns, or voice. While convenient, biometrics have a fundamental problem: you can't change them if compromised.
FIDO2
An open authentication standard that combines WebAuthn and CTAP protocols to enable passwordless and phishing-resistant login.
WebAuthn
A web standard that enables passwordless authentication using hardware security keys, biometrics, or platform authenticators.
Have more questions?
Use our guided flow to get the right next privacy step for Biometric Authentication.
Open Guided Flow