Hi, we have been told that we don't need to worry about using fingerprint to unlock our iOS devices as Apple does not have access to such data. How about using fingerprint to unlock the Thinkpads? Can we trust Lenovo and MS that they won't gain access to our fingerprints for unauthorized usage?
For fingerprint issue, can we trust Lenovo and MS the way we trust Apple?
- Thread starter hajime
- Start date
- Sort by reaction score
No. With that said, I don’t see the value in using a fingerprint to unlock a computer you ont be locking nad unlocking all the time like a phone.
No to fingerprint, face recognition or pin. Just use a password and a local account.
I use a pin for iOS. Since that is the only practical password for it. Plus the 10 attempts to a wipe gives enough security. Although I’d rather have it limited to three attempts.
I use a pin for iOS. Since that is the only practical password for it. Plus the 10 attempts to a wipe gives enough security. Although I’d rather have it limited to three attempts.
Personally I don't see any issue, not that I trust MS & Lenovo any more than Apple. with the former being a good deal more transparent.
Q-6
Q-6
I'm not understanding your point. What do you mean trusting? Its a biometric scanner, nothing more ¯\_(ツ)_/¯
I don't even think about it. Nobody is trying to get your fingerprint. It's a solid security function. Next will be retina scan. No worries there either.
I worry that Lenovo or MS may gain access to my fingerprint information. I recall that I asked similar question about iOS devices here and forum members cited a post from Apple that such fingerprint info are stored in an encrypted chip inside the iPhone/iPad so Apple has no access to our fingerprint data. Even Apple or bad guys got our iPhone/iPad, they cannot access our fingerprint data.
And what could they do with that?
Maybe it's my ignorance but I'm not sure how that could be useful.
On TV, people use fingerprints to open secured safety box, to unlock the doors, to identify people (CSI stuffs) and as another way of signature (e.g. bad guys forcing the victim to put the thumb on the contract), etc.
Do you have a safe that uses fingerprints? Seems like you're working about something that's a non issue in real life
Just use it, or don't use it, but stop worrying about it. To be frank your asking the wrong audience, speak with Lenovo and look at the ThinkPad forums. The biometric data is likely secured by TPM (one would hope). If you want absolute security use a smartcard reader where the biometric data and or password is stored on the smartcard not the local machine, or a third party BT solution.
In short the fingerprint login is about as secure as a password IMO, any password or "token" can be broken by a determined individual with the right knowledge. Personally I would use it out of convenience, equally mindful of the data stored. What I wont use is any iris or face recognition to unlock a computer as they are generally inappropriate in a business/professional environment, regardless of the security protocol behind it.
Q-6
And the smart card is an option that you could purchase through Lenovo for your X1E, if you do have any serious security concerns.
You could also place a bit-locker key on a thumb drive so that you would need to insert the thumb drive to decrypt the SSD.
You could also place a bit-locker key on a thumb drive so that you would need to insert the thumb drive to decrypt the SSD.
I use facial recognition on both my iPhone and my Surface Book 2 (FaceID and Windows Hello), so I guess so.
[doublepost=1539640946][/doublepost]
My gun safe at home uses fingerprint ID, though it fails about 50% of the time. Keypad is right there, though, so most of the time I just use the #.
That is pretty much true of any company, though it doesn't keep people out of your phones. The biometric info is stored on a chip that processes the security clearance without even passing it to the OS.
iPhones with fingerprint readers have been hacked very easily. FaceID has also been hacked, but not as easy as fingerprint ID. I don't believe Apple is any better or any worse than Lenovo when it comes to this kind of thing. Common sense on the part of the device owner is still required.
That said, the biggest target from where fingerprints might be hacked is probably the government. The FBI, for example, has a database of over 100M fingerprints, that include citizens and non-citizens. The Department of Defense also maintains a database for military personnel. A breach to one of those is probably a far bigger concern than someone trying to get your fingerprint ID from a single laptop.
Here is a little more info on the fingerprint technology Lenovo uses...
Why worry about that then. Even if Lenovo keeps your finger prints on a server, what does that give them? A finger print, that's it.
The risk with that I see, is forgetting the thumb drive. I can see doing that myself. I travel across the country, and left the thumb drive home
The risk with that I see, is forgetting the thumb drive. I can see doing that myself. I travel across the country, and left the thumb drive home
Yes. If i went this route and I have not, I would probably use one of those thumb drives that can be attached to my car keys. Something along the lines of the Samsung BAR Plus, which is aluminum and claims to be water/shock proof, temperature resistant, etc.
There are also the flat business card types that will fit into a wallet, but I don’t trust the reliability/durability of the design.
You could also attach one to the inside of your laptop bag with a lanyard, but it would really just defeat the purpose.
The risk with that I see, is forgetting the thumb drive. I can see doing that myself. I travel across the country, and left the thumb drive home
Or if it stops working suddenly.
It’s a double edge sword, the more layers of security you add the more possible points of failure you add.
Unless your going to be specifically targeted I wouldn't worry about it. A strong password, fingerprint or even pin number will be more than adequate, just ensure Bitlocker is enabled.
You can also remotely lock the notebook and reset the password to something impenetrable...
Q-6
Last edited: