Closed woodbe closed 1 year ago
Suggested change: reduce the number of allowable attempts, or clarify why 50 attempts is an acceptable value.
agree on the suggestion
I agree as well. Some sort of penalty should be invoked well before 50 failed attempts.
Add possible tie to delays between attempts as part of the suggestion.
Suggested Change:
The number of attempts allowed should be lowered or justified as to why the number of attempts and the included delays are acceptable. It seems that the number of attempts should be tied to the FAR/FMR value of the system, and not globally defined. Possibly a table showing acceptable FMR values and a range of allowed attempts.
https://github.com/biometricITC/cPP-biometrics/issues/401#issuecomment-1402145728
Section - 5.2.3
Page - 33
Line - 1290-1298
Comment
50 attempts without PAD seems very high if the system is on the low-end of acceptable FMR, even with it being part of MFA
Suggested Change