Good question. I think it’s a double edged sword perhaps. On one hand you’ll have fewer account breaches due to stolen passwords. On the other hand it may be easier to force people to unlock their accounts. If a judge orders you to log into your account, you have plausible deniability in saying you forgot your password. But with biometrics they’ll just force you to put your finger on there or look at the phone and done.
Do you have positive or negative views towards passkeys nostr:npub1r0rs5q2gk0e3dk3nlc7gnu378ec6cnlenqp8a3cjhyzu6f8k5sgs4sq9ac ?
Discussion
In the United States you cannot be compelled to reveal your password by a judge, because it is protected under the 5th Amendment.
Passkeys, and any form or biometric login bypasses this protection completely. I strongly advise anyone hiding information from the US government to reconsider using biometrics or passkeys.
Even if you have nothing to hide, consider what it means for your rights.
Yes. Security considerations should always begin with the question, “secure from whom.”
Passkeys are great for businesses to stop phishing and dumb employees. A journalist in a hostile nation would be an idiot to use it.
Graphene OS is a couple button presses away from "lockdown," it will require a code to get back in. There is also a setting that you can use that will put it into lockdown mode after sitting idle for too long. So Grapheme OS does offer some mitigations for biometric vulnerability.
You can use your foot for the fingerprint.