I can only see this going into a very dystopian path. Based on their actions, I don’t trust these companies, their security practices, nor their privacy policies. Why would I give them my biometrics? And my full palm, at that!? Hell no!

  • TiredSpider@slrpnk.net
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    All this trouble and they didn’t even make the scanner shaped like a hand so you can high five it. Waste of potential.

  • ImFresh3x@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I like to do this at Whole Foods in front of my anti vax friends and tell them about how cool it is to have a chip that lets me pay by waving my hand.

  • frustbox@lemmy.ml
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    One scar away from losing access to your ability to pay …

    Biometrics can not really be changed. Except maybe through time or trauma (i.e. age or injury). They can be used to uniquely(?) identify a person - except maybe twins - at the expense of anonymity, which has it’s own set of problems.

    But because they can not easily be changed they’re a terrible security feature. Once they leak, they’re unusable and you’re hosed. You can’t issue a new palm print for your bank account like you could a new chip card and password.

    Also, just because you waved your hand over a scanner does not mean that you approve and consent of the transaction. With tap to pay there were ideas of mobile point of sales devices just tapping on peoples backpacks in a crowded area. You don’t even keep your biometrics markers in your pocket, they’re just out in the open for anyone with a camera. This may be bordering on paranoia, but a few years back (2014) German hackers from Chaos Computer Club took iris scans from Angela Merkel (then Chancellor of Germany) and finger prints of Ursula von der Leyen (then Minister of defense) using nothing but press fotos. Cameras have only gotten better.

    TL;DR: Biometrics can be used for identification but should never be used for authorisation.

  • Dissasterix @lemmy.world
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Its hard to believe anyone would use the thing. It’ll be more problematic if/when its used for regulatory purposes. Sort of at the desensitization still. Today.

    I had to take a State exam for licensure a few years back. I was told that I had to take a palm/vein scan to prove my identity. I informed her Ive never had one so it could not prove my identity-- but hey, Im the crazy one. Its on a server somewhere now tho… Modernity is pretty stupid, tbh.

  • dan@lemm.ee
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Shit no! You know what you can’t change if/when they inevitably leak your data? Your fucking hand.

  • Tb0n3@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    1
    ·
    1 year ago

    This makes me irrationally angry. I feel like if I saw that shit in real life I would have to put in effort not to smash it.

  • JoYo 🇺🇸@lemmy.ml
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    1
    ·
    edit-2
    1 year ago

    bro, come back to me when most stores accept touch emv payments. lol, like each fucking store is gonna know what to do with a fucking palm scan when emv is fucking forbidden magic.

        • JoYo 🇺🇸@lemmy.ml
          link
          fedilink
          English
          arrow-up
          0
          arrow-down
          1
          ·
          1 year ago

          I live in DC and most groceries don’t support it.

          Whole Foods wants to use some qr code thing, probably precursor to the palm.

  • stevedidwhat_infosec@infosec.pub
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    14
    ·
    1 year ago

    Forget about privacy, this is just fucking dumb

    One point of failure that can’t be replaced if stolen?

    This won’t ever take off, and will most definitely die out quickly in favor of literally any other technique including just embedding an nfc chip and battery to your palm surgically. Which I probably still wouldn’t be thrilled about but

    • 𝕸𝖔𝖘𝖘@infosec.pubOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      1 year ago

      I’ve see where you can pay with your fingerprint at some venders. It’s a similar concept, in terms of single point of failure. Regardless, I hope you’re right.

      E: **mostly right. I won’t embed anything in my skin for payments. CC or cash or phone NFC (and I don’t like that one for it’s security implications). That’s it.