Jane has been tasked with implementing multifactor authentication at our organization. The request from senior management is to make it secure, but also to protect employees privacy and not inadvertently record something that could reveal private employee health information. What are some good reasons to not use biometric authentication in Janes implementation?
A: It can reveal private employee information.
B: It is wrong more often than not.
C: Biometrics often change.
D: Biometrics are easily copied.
CBK 5: Identity and Access Management
Source: ThorTeaches.com practice tests
A: Something you are – Type 3 Authentication (Biometrics): Can inadvertently breach our employees privacy: Some fingerprint patterns are related to chromosomal diseases. Iris patterns could reveal genetic sex, retina scans can show if a person is pregnant or diabetic. Hand vein patterns could reveal vascular diseases. Most behavioral biometrics could reveal neurological diseases, etc.