Did you know Cybrary's video training is FREE? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.
In this section we discuss the futuristic topic of biometrics that is covered by TYPE III authentication. This is commonly referred to as something you are. The core principle behind using biometrics as an authentication method is that the things associated with you should not change significantly over time. We mention that there are two types of TYPE III authentication: static and dynamic. Static features rarely if ever change such as fingerprints, retina and iris patterns, as well as ear geometry. Dynamic factors are based on behavioral traits such as voice pattern, gait, signature, and keyboard typing cadence. An imposter would be greatly challenged to fake such things about you for an extended period of time. We then discuss accuracy and error concerns with using these factors for authentication. The two types of errors at this level are Type I and Type II errors. Type I errors are false rejections where the system considers too much information and in effect, becomes overly strict where a legitimate user is rejected. Type II errors are false acceptance, which is the exact opposite of what was intended. It is then pointed out that an optimal threshold is achieved by examining the crossover error rate (CER). Finally, concerns around TYPE III authentication factors are discussed such as user acceptance, cost, and the fact that there is no way to revoke biometrics if they should somehow become comprised. It's not too likely that you can shed your fingerprints! We conclude the section by pointing out that the strongest form of authentication is combining biometrics with something else in order to attain multi-factor authentication.