[Cryptography] Crypto basic income

Jonathan Thornburg jthorn4242 at gmail.com
Sun Sep 24 21:08:50 EDT 2017


On Sun, Sep 24, 2017 at 04:41:07PM +0000, Guilherme Campos wrote:
>    - If compromise of biometric details occurs, how would one go around to
>    solve this, since it's not possible to, for example, create a new
>    fingerprint for a person?

The only safe solutions are
(1) don't use biometrics, or
(2) assume as part of the basic system design that all biometrics are
    non-secret, i.e.,
    (2a) the biometric will sooner or later be leaked/stolen/compromised
         (with, as you noted, "biometric rollover" usually impossible),
         and/or
    (2b) the biometric is inherently broadcast to the owner's immediate
         surroundings and can be surreptitiously recorded without the
         owner's knowledge (e.g., facial appearence, iris patterns,
         voiceprints, fingerprints).

This implies that biometrics can at most prove identity, or more
precisely continuity-of-identity from time-of-enrollment to time-of-use.

-- 
-- "Jonathan Thornburg [remove -animal to reply]" <jthorn at astro.indiana-zebra.edu>
   "There was of course no way of knowing whether you were being watched
    at any given moment.  How often, or on what system, the Thought Police
    plugged in on any individual wire was guesswork.  It was even conceivable
    that they watched everybody all the time."  -- George Orwell, "1984"


More information about the cryptography mailing list