alt Hacker NewsBiometrics is just something else to get leaked, terrible idea because it's even more sensitive (can be used to track you through cameras for example, like used in the Iran war).
This problem has long been solved with federated IdPs and MFA - something you own like OTP device/physical token besides something you know like SSN/tax id/password.
Most governments prefer biometrics of course because citizen privacy is the opposite of what they want.
Replies
I would not go that far to say all govts are like that. The main problem is majority of citizens cannot easily remember such things. Even simple PIN that is included in EU ID cards - most people don't remember or use. people want frictionless use.
> Most governments prefer biometrics of course because citizen privacy is the opposite of what they want.
Or... it's something that you always have on you which is incredibly hard to fake.
Maybe in the future, our driver licenses will become a physical token?
Biometrics are the only credential you can't roll after compromise.
> something you know like SSN/tax id/password
How can you equal an SSN/Tax id with a password? The SSN/Tax id is more or less public knowledge while a password is not.