Originally posted by Reverend Jones:
Is this mentality too different from a common one w.r.t. computer security? A small group of people are sincerely interested in making systems more secure, whereas the rest are apparently just annoyed that they have to think about security at all, and therefore do everything they can to circumvent it in the name of convenience.
The “common mentality” is a software ****lord who thinks his limited programming skill makes him better at designing locks than the people who do it for a living.
The very idea is moronic - it TRIPLES your attack surface, a third of which you would find incredibly unpleasant - and that’s assuming your mechanism was designed at least as well as existing locks. Biometrics are a great username and a lousy password.
Computer security isn’t made bad for the sake of convenience. There are plenty of design choices engineers are making to this very day that they think improves security, but actually make things both less secure and less convenient. Things like password restrictions and password expiration. (Studies have repeatedly shown that people choose worse passwords when they’re forced to reset them periodically, e.g. Hunter01!, Hunter02!, etc.. Despite overwhelming evidence though, it’s basically impossible to get chuckle**** computer janitors to stop their idiot horse**** though!)