[Cryptography] Crypto basic income

Guilherme Campos gpirescampos at gmail.com
Mon Sep 25 06:04:24 EDT 2017 

Thank you for replying.

Your point would be: biometrics are good to generate secrets, but not good
to serve as secrets. Is that correct?

I definitely understand your point, and today's limitations, but what I'm
trying to get at here is the possibility of completely removing the need of
physical, or digital, secrets (thus the whole "biometrical PKI"). By the
end, this is the main point of failure. If someone gets to my secret, I'm
compromised.

It seems that this is impossible with current technology. Am I being
utopian, or could this possible happen?

Regards,
Guilherme

Jonathan Thornburg <jthorn4242 at gmail.com> escreveu no dia segunda,
25/09/2017 às 02:08:

> On Sun, Sep 24, 2017 at 04:41:07PM +0000, Guilherme Campos wrote:
> >    - If compromise of biometric details occurs, how would one go around
> to
> >    solve this, since it's not possible to, for example, create a new
> >    fingerprint for a person?
>
> The only safe solutions are
> (1) don't use biometrics, or
> (2) assume as part of the basic system design that all biometrics are
>     non-secret, i.e.,
>     (2a) the biometric will sooner or later be leaked/stolen/compromised
>          (with, as you noted, "biometric rollover" usually impossible),
>          and/or
>     (2b) the biometric is inherently broadcast to the owner's immediate
>          surroundings and can be surreptitiously recorded without the
>          owner's knowledge (e.g., facial appearence, iris patterns,
>          voiceprints, fingerprints).
>
> This implies that biometrics can at most prove identity, or more
> precisely continuity-of-identity from time-of-enrollment to time-of-use.
>
> --
> -- "Jonathan Thornburg [remove -animal to reply]" <
> jthorn at astro.indiana-zebra.edu>
>    "There was of course no way of knowing whether you were being watched
>     at any given moment.  How often, or on what system, the Thought Police
>     plugged in on any individual wire was guesswork.  It was even
> conceivable
>     that they watched everybody all the time."  -- George Orwell, "1984"
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170925/f38a08e6/attachment.html>

More information about the cryptography mailing list