More than one biometrical factor for HUID and other ideas

[wrrp]

I'd go for using more than one biometrical factor and would combine them intelligently during authentication. Each factor could have a fuzzy confirmation logic to it, allowing for gradual changes.

In addition to biometrical factors I'd also add non-biometrical factors.

In my approach an authentication would require X out of Y factors successfully confirmed, whereas Y >> X and both do contain additional non-biometrical factors, the relevance and validity of which still has to be thought over in detail.

Depending on the purpose of any given authentication case, X could vary in number and allowed share of non-biometrical factors.

There should be an algorithm allowing for gradual changes of single biometrical factors to allow for factors which do change over time.

Reasoning: Single biometrical factors might either change over time and/or get lost, e.g. if linked to retina scan alone one could lose their eyes (perhaps even forcefully). A composite approach is harder to develop, however it would increase integrity and security sharply.

[afurmanczyk]

Don't have much to say except, I agree with wrrp. X out of Y factors to confirm identity is smart. One thing I'd add is if there is a machine learning element which could make better and better judgment calls on if someone is who they say they are.

[tanevanwifferen]

you could use fingerprint scans off 10 fingers and 10 toes

[Obsol33tzer0]

As long as most of these 'scans' can be done in the background, you'll have better chance of adoption. I reckon anyone who needs to do 15 minutes of ID checking for a vote of any kind (which will be the case in decentralised governing) might get voting fatigued very fast.

[stuk88]

After you are logged in, there is no need for password again. Cuz you don't loose anything by voting. Unless it's a money transfer. And than probably 1 extra factor is enough, after they already logged in.