Comments on: Thoughts on Biometric Passwords

By: Tara

Tara — Sat, 03 May 2008 09:35:32 +0000

@Thor
Yes, I completely agree – on both points. :)

By: Thor M.K.H

Thor M.K.H — Fri, 02 May 2008 20:57:54 +0000

It’s certainly interesting to see how the times have changed. In the earlier days of fingerprints and security it was considered a difficult task to “get” someones fingerprint, thus people thought of it as a very safe way.
Now however, it’s just so different. It’s a lot easier to just scan your finger each time you want to login, but just as having the same password everywhere – easy isn’t always safe.

Anyway, Paul’s suggestion is plausible and sounds nice. Though, there are times when it’s good to NOT login when you first arrive at the website.

By: Biometric Passwords… Again « PassPack Blog

Biometric Passwords… Again « PassPack Blog — Fri, 02 May 2008 11:51:18 +0000

[...] Passwords… Again About a month ago, we posted some Thoughts on Biometric Passwords. Yesterday, Kim Cameron’s Identity Weblog unveiled how vulnerable fingerprints are… in [...]

By: Tara

Tara — Sat, 19 Apr 2008 16:17:45 +0000

@Paul
Yes, well rather than create a greasemonkey script, we’ll probably go straight for the plugin/toolbar. We’ll still leave the current bookmarklet because it’s useful when on a PC that isn’t yours since it doesn’t require installation.

Thanks for the love [smile]

@Vaida
Sounds a lot like OpenID (or am I misinterpreting your comment?). You’re right though: not much room for anonymity in a federated identity platform, especially if it were to get tied to offline identifying personal information like biometric data.

Cheers!

By: Vaida Bogdan

Vaida Bogdan — Fri, 18 Apr 2008 10:38:37 +0000

A centralized login process would increase security (though some users prefer anonimity).

E.g. login to secure.com. There you have a list of sites that can access part of your information (your bank has access to your SSN, forum X has access to your mail address and nothing more, …). Clicking on any site would bring up its homepage with you already logged in (by a certificate or another method).

Anonymity could be achieved like this: when you create a new account on a forum you generate from secure.com a random link that will allow the forum to access your mail address.

By: paul sanchez

paul sanchez — Thu, 17 Apr 2008 21:11:52 +0000

sorry to post this here but i already wrote support and did not get a good response.

The 1 Click Auto-login could be even better. It would be great if when you clicked a link in your password manger that it would auto login when that page starts.

maybe you could use greasemonkey to replace the passpack it button.

i flipping love your guys tool! keep up the great work.

if you did this one thing i would make your site my homepage.

regards,

paul