How Secure Is Microsoft's Fingerprint Reader?

Moos3d asks: "I recently found out about this Microsoft Fingerprint Reader at the library and ever since then I have been fascinated by using something like this for my own PC. How secure is this compared to using multiple 10+ character long passwords? Some people I've talked to seem to think it isn't safe at all and some people seem to think it is only safe for casual use. I only plan to use it for online forums and other applications that don't require great measures of security so it seems to be perfect for me, but how secure do you think it really is?"

Missing the point

[Otter]

How secure is this compared to using multiple 10+ character long passwords?

When even the editor offers a "LOL! Mirco$oft 1s teh sux!" response (in the from-the line, no less!) I wouldn't expect too much from the rest of the readership, virtually none of whom have ever seen the thing, let alone used it.

Anyway, you're missing the point about complex, frequently changed passwords. The question isn't whether they're stronger than Batman or just stronger than Aquaman, it's whether their nuisance factor poses an actual risk.

MS says..."not very"

[holden+caufield]

I did some testing with one once, and the information included with the device (maybe the outside of the package - I forget) tells you it's not meant to be used as a security device. I'm sure it's for liability purposes, but MS is positioning this device to remember web page usernames and passwords. Yes, it's possible for someone to use it to log into a banking page or something, but you can't use it for domain logins.

Re:Just as secure as any other

[j-turkey]

It is completely useless, just as any other authentication relying on sending data that is not secret. This is really getting old... Ley me quote a 1998 article on biometrics by Bruce Schneier:

Schneier also follows up with a 2002 Crypto-gram blurb, noting Matsumoto's excellent work with the gelatin-finger.