Applies To: AuthPoint Multi-Factor Authentication, AuthPoint Total Identity Security
Biometrics are authentication methods that identify you based on distinctive physical characteristics, such as your fingerprint, iris, and face. These characteristics are called biometric identifiers (biometric IDs). You can configure your mobile device to recognize these biometric IDs and authenticate you.
In the AuthPoint mobile app, you can enable biometric protection as an alternative method to unlock protected tokens. When you enable biometric protection, you can use biometric IDs to unlock any protected token without the PIN.
To enable biometric protection for your tokens, see Token Security.
When you use biometric IDs to unlock your tokens in the AuthPoint mobile app, you can only use strong biometric IDs.
Biometric Strength
The strength of a biometric ID is based on how secure it is and how easily it can be bypassed. The strength takes into account the specific biometric ID (fingerprint, iris, face) and the hardware and OS of your device.
For example, facial recognition might be considered a strong biometric ID on a newer phone, but a weak biometric ID on an older phone with outdated hardware. On the older phone, the outdated hardware makes it easier for an unauthorized user to spoof or impersonate this biometric ID.
In general, a fingerprint is considered a strong biometric ID on most devices. Face and iris recognition are stronger on newer devices, but are usually considered less secure than other biometric IDs because someone who looks like you or uses an image of your face could unlock your phone.
When you use biometrics to unlock your tokens in the AuthPoint mobile app, you can only use strong biometric IDs. Even if you configure multiple biometric IDs on your mobile device, some biometric IDs might not be available to use when you unlock protected tokens.