That’s the thing - it’s not possible. The fingerprint is only ever stored within the fingerprint module, with no method for retrieval. The only thing the phone sees is “did this person scan a matching fingerprint or not?”
in the early 2000s when fingerprint readers started getting popular, my coworker and I decided to test them…
super glue fumes, printer toner and scotch tape. that’s all that was ever needed to bypass the reader once you could isolate a good spot where someones finger left a good mark. like from drinking glass or a door knob
I’m not sure if I’d ever trust a fingerprint to fully be a secure passkey
I would not trust it as a single factor, but 2FA should always be something you have+something you know, biometeics is more of a “something you ARE”, which is unchangeable.
Your fingerprint is your fingerprint. If its possible to extract the raw data, then that can be reconstructed into your fingerprint…
That’s the thing - it’s not possible. The fingerprint is only ever stored within the fingerprint module, with no method for retrieval. The only thing the phone sees is “did this person scan a matching fingerprint or not?”
in the early 2000s when fingerprint readers started getting popular, my coworker and I decided to test them…
super glue fumes, printer toner and scotch tape. that’s all that was ever needed to bypass the reader once you could isolate a good spot where someones finger left a good mark. like from drinking glass or a door knob
I’m not sure if I’d ever trust a fingerprint to fully be a secure passkey
Also I hear you can be compelled by the police to unlock biometric locks.
I would not trust it as a single factor, but 2FA should always be something you have+something you know, biometeics is more of a “something you ARE”, which is unchangeable.