[2407] in cryptography@c2.net mail archive
Re: biometric key management (was: Re: Deniable Cryptography
daemon@ATHENA.MIT.EDU (Stephen Cobb, CISSP)
Mon Mar 30 23:16:24 1998
Date: Mon, 30 Mar 1998 21:11:51 -0500
To: sinster@darkwater.com
From: "Stephen Cobb, CISSP" <stephen@iu.net>
Cc: cryptography@c2.net
In-Reply-To: <m0yJoRf-0010KtC@scintilla.darkwater.com>
You make some excellent points about the shortcomings of biometrics. I am worried that people will soon latch onto biometrics as the silver bullet for information security, just like they did with firewalls for internetwork security, and are doing now with smart cards for e-commerce.
It is apparently a consant of human nature that we welcome every "new" technology with open arms and, in our excitement over how cool it is, forget that no technology is either good or bad. It is all a two-edged sword. Like encryption that keeps a company's data safe from intruders, which is then used to ransom data, which leads to encryption with back-doors, which are then abused, and so on, and so forth.
IMHO, warnings such as yours play an important part in the ongoing effort to redress the balance.
Stephen
<<<<<<<<<<<<<<<Stephen Cobb, CISSP>>>>>>>>>>>>>>>>>
Certified Information Systems Security Professional
tel: 1.407.383.0977 fx: 0336 email: scobb@miora.com
For information security info, http://www.miora.com
