Biometric Security Enhancements
Enterprise-grade biometric authentication security to address:
- Risk #6: Biometric spoofing attacks (deepfake voice, fingerprint molds)
Features
- User Verification (UV) Enforcement: Require UV=true in WebAuthn
- Liveness Detection Validation: Verify authenticator supports liveness
- Step-Up Authentication: Require additional auth for sensitive operations
- Risk-Based Re-Verification: Re-verify biometrics based on risk
- Biometric Quality Checks: Validate biometric quality scores
- Authenticator Attestation: Verify authenticator capabilities
- Usage Tracking: Monitor biometric usage patterns
- Anomaly Detection: Detect suspicious biometric usage