Why I choose passwords over biometric authentication for phone security
By
Saeed Wazir
Summary
The author explains why they refuse to use biometric authentication (fingerprint or Face ID) on their phones, arguing that these methods compromise privacy and security. They contend that biometric data is immutable and once compromised cannot be changed, unlike passwords. The author also raises concerns about how biometric data can be compelled by law enforcement (you can be forced to unlock a phone with your face/fingerprint but not to reveal a password), and how companies store and potentially share this sensitive data. They advocate for using strong alphanumeric passwords instead, prioritizing privacy over convenience.
Source
Key quotes
· 4 pulledBiometric data is the one thing you cannot change if it gets compromised — unlike a password, you can't get a new face.
The Fifth Amendment protects you from being forced to reveal a password. It does not protect your fingerprint or your face.
Convenience should never come at the cost of your fundamental right to privacy.
Every time you use Face ID or a fingerprint scanner, you are handing over a piece of your biological identity to a machine that may not have your best interests at heart.
You might also wanna read
Biometric Authentication vs. Passcodes: Legal Privacy Concerns and 5th Amendment Protection
The article argues against using biometric authentication methods like Face ID and fingerprint scanning due to privacy and legal concerns. I
Federal Raid Authorization Reveals Biometric Security Vulnerabilities in Smartphones
The article discusses how a federal raid on a Washington Post reporter's home included authorization for law enforcement to forcibly use bio
DHS Proposes Expanded Biometric Data Collection for Immigration Applicants and Related Citizens
The US Department of Homeland Security is proposing a significant expansion of biometric data collection for immigration applications. The n
Why Certificate-Based Device Identity Is Insufficient for Zero Trust Security
The article argues that most organizations mistakenly believe they have proper device identity management because they use certificates, but
Examining Privacy Concerns in Passkey Authentication Systems
The article examines the industry shift from traditional username/password authentication to passkeys, acknowledging the security benefits f
The Risks and Regrets of Switching to eSIM Technology for Digital Authentication
The article discusses the author's negative experience with switching to eSIM technology in 2025, highlighting how phone numbers have become
arstechnica.com·6mo ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.