Authentication with biometric data intuitively appears extremely secure to the user, but biometric authentication is full of poisoned traps and deadly pitfalls.
Some general risks (not complete, add if you like more points)
- If the digital fingerprint is saved anywhere in a central database, then you can fake fingerprints, by generating a blueprint.#
- Same story, if the fingerprint is transmitted somewhere.
- Even, if stored on local devices unencrypted or reversible symmetrically encrypted, than biometric data as fingerprints, eye scans, are great risks.
Some general risks (not complete, add if you like more points)
Example of current used hardware for fingerprint sensors (Google Pixel3)
Case study: "digital gouvernement" from Austria
https://play.google.com/store/apps/details?id=at.gv.oe.app
https://apps.evozi.com/apk-downloader/?id=at.gv.oe.app
https://apkcombo.com/apk-downloader/?q=at.gv.oe.app
To be continued...