Subnostr

nitesh 2y ago

iPhones should stop falling back to the phone's passcode if the face/touch ID fails to authenticate to an app. What if your phone was stolen and the attacker knew your passcode?

Falling back to requiring to entering the app password over the phone passcode if face/touch ID fails is the logical way of protecting. Falling back to the passcode means not just your phone but potentially your whole life could be stolen.

Reply to this note

Please Login to reply.

Discussion

openoms 2y ago

Android (at least GrapheneOS) has a lockdown option when pressing the power button which deactivates the by nature insecure biometric login amlnd forces the PIN for the next unlock.

I always use it when give the phone out of my hand. The alternative is to switch off.

The stupidest kid can hold a phone to your face to unlock.