[10403] in cryptography@c2.net mail archive
Re: biometrics
daemon@ATHENA.MIT.EDU (Dan Geer)
Wed Feb 6 11:48:53 2002
Message-Id: <200202060516.AAA26191@world.std.com>
To: lynn.wheeler@firstdata.com
Cc: Sidney Markowitz <sidney@sidney.com>,
Cryptography Mailing List <cryptography@wasabisystems.com>,
geer@world.std.com
In-reply-to: Your message of "Tue, 29 Jan 2002 15:12:20 EST."
<OF600202B2.670E3EBB-ON87256B50.007958F4@internet.ny.fdms.firstdata.com>
Date: Wed, 06 Feb 2002 00:16:09 -0500
From: Dan Geer <geer@world.std.com>
> In the article they repeat the recommendation that you never
> use/register the same shared-secret in different domains ... for
> every environment you are involved with ... you have to choose a
> different shared-secret. One of the issues of biometrics as a
> "shared-secret password" (as opposed to the interface between you
> and your chipcard) is that you could very quickly run out of
> different, unique body parts.
Compare and contrast, please, with the market's overwhelming
desire for single-sign-on (SSO). Put differently, would the
actual emergence of an actual SSO signal a market failure by
the above analysis?
--dan
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
