Biometric authentication verifies identity using unique physical or behavioral characteristics — fingerprints, facial geometry, iris patterns, or voiceprints. Unlike passwords, biometric factors cannot be forgotten or shared. But unlike passwords, they also cannot be changed if compromised.
Biometric system accuracy is measured by False Acceptance Rate (FAR) and False Rejection Rate (FRR). The crossover error rate where FAR equals FRR is a standard comparison point for evaluating systems.
CISSP Relevance
Biometric authentication is covered in Domain 5 (Identity and Access Management). CISSP candidates must understand biometric types, accuracy metrics, privacy implications, and how biometrics fit into multi-factor authentication architectures as a something you are factor.
External reference: NIST SP 800-63B Biometric Authenticator Requirements
Related terms: Multi-Factor Authentication, Authentication