I don’t know if you are interested in getting into RotR and if Disney will still be doing BGs, and if they will be requiring the finger biometric at DHS when you are there, but if all of the above is a “yes,” not doing the finger biometric could pose problems with him not showing that he’s in the park as the CM will need to manually override.
Getting a BG in DHS requires you to enter the park. Disney knows you have entered the park when your entry ticket is used. Opting to use a photo ID instead of a finger isn't a manual override, it's an alternate authentication. Like setting up the finger scanner on your phone so you can use that instead of entering the pin.
He says in his line of work, which involves data management and security he’s aware of how easily things can be hacked and doesn’t want to risk it.
I've met people like that and I get it. I'm currently developing a product using AI, Machine Learning, and Computer Vision (the singularity trifecta) and... I get it.
But if it helps him, you might point out that a fingerprint scan will never be used as the sole form of authentication to access protected data. It's inherently insecure. I mean it's fine for a device you keep in your pocket and can brick with a phone call should you lose it. It's fine to get you in and out of a park.
But to access secure data? It will never measure up. Here's why. Think of your password to get into DisBoards... what happens if someone gets your password? You change it. What happens if someone gets your fingerprint? It's called revocability. Secure systems require revocability. Even if one's fingerprint scan data is leaked, it really isn't going to be very useful to the hooligans.
Did you think of the time added to get through if 5 people ahead of you decide to do this silly process? That "2 minutes" now becomes ten more. So, it's not just the one party with the paranoid person that is affected. It's everyone behind that person, and if there are multiple ones, it adds up.
How many people have you seen that opt out of fingerprint scanning? This guy choosing to do so is not going to encourage or cause other people to do so.
We live in a society. Sometimes that means someone else's choices cost us a few extra minutes in line. Are you never that person?
You know I don't carry a bag into the park half the time, something my wife carries every day. Should I bolt for the bag-free line leave her behind?
Like I said, a biometric.
biometric is an adjective. Lots of things are biometric. Just saying biometric doesn't tell us what's being stored. Eyes, face, ears, voice, the way you type, the way you correct the steering wheel while driving, your walking gait, fingerprints are all biometric, they are all things a computer can record and compare in order to authenticate you. Disney stores fingerprint data.
I am a little disheartened that not a single person here has defended your husband.
Ahem
After multiple people here have explained how the biometric scan is useless outside of the confines of WDW, it's a wonder to me how people are still concerned with a partial ID of a finger being a problem. What exactly are you going to do with that finger?
Nothing. And I don't worry about it. But for those who do, who are not on the tinfoil spectrum, it's a matter of principle. I hear people talk about it being a progression along a comfort gradient... getting the masses to accept less and less control over their personal information. I get it. I just don't worry about it.
"For Disney to say they are not storing the actual fingerprints, they are," countered Former FBI agent J.J. Klaver. "They are storing the digital representation of that fingerprint."
I don't think any of us can say with 100% certainty what Disney is doing with our data.
I read that article, it had a smell conspiracy nut to it but he's not exactly wrong.
Disney is not storing the digital representation of your fingerprint. Disney is storing a digital representation of your fingerprint. It is quite rudimentary, i.e. of low resolution.
What's being stored has no resolution. If you could pit the data together as an image at all it would most closely represent a QR code. A QR code that has no visual similarity to your fingerprint. But ... the scanner itself is taking a very hi resolution image of the finger, 500 pixels per inch. That image exists in a stored state long enough to be processed and encoded. There is concern that a scanning terminal could be hacked.
Remember when those full body x-ray scans at the airport were being rolled out and the TSA assured us that the the private areas would be distorted automatically and that the machines were incapable of storing scanner images? And then ... they had to admit that the stored images resolve to near photo quality minus clothing... and that they are capable of saving scanner images... and that a bunch of US Marshals were busted with 100s of saved body scanner 'nudes'.
A small dose of paranoia is not always a bad thing.
(I still use the scanner)