Passwords vs PINs πŸ”


#1

So I think this could be a good idea, where currently we setup a new payee or amend certain details it asks for our password, could we maybe have an option of a secure code, say a number we setup being 6-8 digits, I think this would be a lot quicker setting things up as opposed to a password, specially when your on the move and instead of focusing on a keyboard you just have the number keypad and simply type in your codes? Therefore making it hassle free and quick!

Anyone think this is a good idea :bulb:


#2

agree. and the pattern of a code on a numberpad may be easier to remember than trying to think what password you used for what app


#3

Yeah exactly :wave: so much easier than a password, hate passwords lol today’s all about Touch ID, number codes and patterns


#4

I don’t actually see the point of the password its making everything more complicated than what it should be. Either use a pin code like most other banking apps which is quick, or fingerprint for those that have fingerprint enabled.


#5

I honestly find it easier to remember a password. I think I’d keep forgetting a passcode I rarely use more.


#6

Agreed.

There are a couple of people that know the pattern unlock for my phone so I’d rather have a separate password for potentially β€˜dangerous’ changes to my Starling account which is the current functionality.


#7

Most banks require use of a card reader to set up a new payee or a verification code sent to you by text message. I think a password is quicker and easier.


#8

Make it customer friendly so they can chose which of the two to use


#9

This has been a huge topic of discussion both here and in the Monzo community and I’m sure the Starling team is well-armed with community views.

I echo @MIROW that the most sensible development track is that of enabling user-choice.


#10

Ok so people like the password and some like the pin, so why not have an option an either or!? Then this would appeal to all customer types :nerd_face:


#11

What now with face recognition

Are we moving forwards or simply staying as is

Passwords and pins are old fashion

Finger recognition and facial recognition are the way forward in respect to security


#12

Hi @CLIVE_HADLEY

You’ll find some well rehearsed views for and against. Although I rely increasingly on touch ID, it isn’t for some, for a number of reasons.

Of all the options, the Face ID is the least attractive for me, being device-specific and a tad β€œweird”.


#13

Tad weird today but I’m sure it will become the norm soon

Wait until Apple has introduced it across all devices


#14

Just look at what happens with border control ?


#15

There is more to life than Apple.
If it became common on Android phones then it would make an impact.


#16

And thats the point

Do you believe that Android will remain in the margins when this tech takes hold ?

Agree that there is more to Apple but look at what Apple has done to the smart phone industry


#17

Finger recognition is riddled with issues the main one being over a dozen different medical conditions and various occupations where the user will be physically unable to use a contact fingertip reader.

There are many people who suffer from skin diseases. Some of these diseases have a strong influence on the process of fingerprint recognition. People with fingerprint diseases are unable to use fingerprint scanners, which is discriminating for them, since they are not allowed to use their fingerprints for the authentication purposes.

The various diseases include Hand eczema / hand dermatitis, Fingertip eczema / fingertip dermatitis, Pompholyx / dishidrosis, Tinea of the palm / tinea manus, Pyoderma, Pitted keratolysis, Keratolysis exfoliativa, Lichen planus, Acanthosis nigricans, Pyogenic granuloma, Systemic sclerosis, Raynaud’s phenomenon, Medication induced adverse skin reactions, Leprosy, Herpes simplex virus, Scabies, Erythema multiforme, Dermatitis artefacta, etc, so it a bigger problem than may first appear.

There is other fingertip verification technology from Veridian which does not rely on touching a fingertip reader but photos the fingers and palm and has a higher level of accuracy.

The technology is accepted by Interpol and the Dutch Government and in tests is more accurate than the fingerprint scanners built into phones.

It is not just scanning a part of a finger but more finger area.

It is also contactless technology that can be used by those with medical conditions preventing them contact fingerprint readers.

According to the manufacturers the benefits of 4 Fingers TouchlessID are:

β€’ Extremely low False Rejection Rate of 1.0% at a 0.01% False Acceptance Rate

β€’ Greater than 500 DPI resolution, the same as high-end flatbed fingerprint scanners

β€’ Works under any lighting conditions because it uses the device’s LED flash

β€’ Works on standard smartphones – no additional hardware required

β€’ Liveness detection to prevent presentation attacks (spoofing)

β€’ Uses a simple interface that makes it fast and easy to authenticate

β€’ 4 Fingers provides high-quality prints for 1:1 or 1:n matching

β€’ Supports legacy fingerprint database matching, including Interpol, NIST, and more coming soon.

Veridium Touchless ID is utilizing the powerful hardware that everyone has in their pocket as a device to acquire biometrics for secure and reliable authentication. Thanks to their proprietary algorithms, they are able to harvest the high-quality images using rear camera of most smartphone and use them to generate fingerprint images that have similar quality as traditional sensors, add to that their technology captures more area of the single finger than most of these sensors. And, their system is a multifinger system that uses the four fingers. Please check their website for more information.

Veridium Touchless ID has liveness measure to prevent use of photographs and their new Software Biometric Authentication Solution is Verified as Citrix Ready.

Dutch fintech bank bunq use this as their biometrics solution. With a higher level of accuracy than a traditional fingertip reader it also means a lower number of disgruntled customers swiping and swiping their finger trying to get it recognised.


#18

And your point being ?


#19

We could take this further

What about those individuals that are unable to remember passwords or PIN numbers ( medical conditions perhaps)

And those who are unable to read and write .

This really has the potential to open large can of worms for the developer


#20

Personally I think the way is more choice for customers so they can chose touch ID, password, PIN etc as per their preference.

Monzo have specific staff responsible for looking at accessibility and use by disabled and mental health customers.

Some banks issue Chip & Signature cards to those who can not remember numbers such as a PIN.

It will be good to see how Starling tackle these issues and how flexible they will be on giving users a choice of which security feature they prefer to use.

An example would be where Norton have an app and the user can chose to enter a password, a pin, or draw a pattern. I see banks should give their customers a similar choice in their app settings