Expand description
§Biometric Security Enhancements
Enterprise-grade biometric authentication security to address:
- Risk #6: Biometric spoofing attacks (deepfake voice, fingerprint molds)
§Features
- User Verification (UV) Enforcement: Require UV=true in WebAuthn
- Liveness Detection Validation: Verify authenticator supports liveness
- Step-Up Authentication: Require additional auth for sensitive operations
- Risk-Based Re-Verification: Re-verify biometrics based on risk
- Biometric Quality Checks: Validate biometric quality scores
- Authenticator Attestation: Verify authenticator capabilities
- Usage Tracking: Monitor biometric usage patterns
- Anomaly Detection: Detect suspicious biometric usage
Structs§
- Authenticator
Capabilities - Authenticator capabilities
- Biometric
Policy - Biometric policy
- Biometric
Security Manager - Biometric security manager
- Biometric
Verification - Biometric verification
- InMemory
Biometric Storage - In-memory storage for testing
Enums§
- Biometric
Error - Errors that can occur in biometric security
- Biometric
Modality - Biometric modality
- Certification
Level - Certification level (FIDO)
- Operation
Sensitivity - Operation sensitivity level
- Risk
Level - Risk level
Traits§
- Biometric
Storage - Storage trait for biometric security