I have been playing with the new TouchID features in IOS 8 and I am, shall we say, flustered with one of the features: the "Enter Passcode" to bypass touch ID. I am very conscious about the security of my information, but I am also willing to share my devices, whether it be for games, watching a movie, or playing music. To date, in every app possible, I have added a custom passcode. Dropbox, Goodreader, Mint, Evernote, Lastpass, etc. I could share my phone/ipad with anybody and not worry that they could access my finances, work documents, any site accessible with lastpass (ie every website I have a login for). With having the "Enter Passcode" function available when prompted for a fingerprint, any person I give my passcode will have access to everything. I don't want that. I know someone will say "just don't give out your passcode", and I guess that is a option I might consider for my phone that I consider to be more personal. But what about the ipad? It will most likely have touchID next month, are you not going to give your passcode to anyone? What if someone wants to watch a movie and they pause if for too long? Or you give you ipad to your child? The passcode is the same as the one needed to unlock the device. Solution? I don't know. Maybe allow apps to ask for a fingerprint or an app specific password. I think that would work in theory, but it might not fit within the workflow of the secure element and the API.