I’ve heard this technique dozens of times, but each time I hear it I really think it’s the unfortunate reality that someone probably got money selling the idea to someone who didn’t know better before realizing it themselves that it’s really not a great idea and now they have the unfortunate task of selling it to people who do. BioPassword (not to single them out because there are others who have come up with this same concept too) attempts to test the time and the pattern that people use to type in their passwords in an effort to stop password theft and replay. Where to start?
Firstly, we have to ignore the obvious problems, like getting a paper cut and making you type weird, or being drunk, or eating a sandwich and typing your password in with one hand. And I thought fingerprint biometrics were annoying! Of course you can bypass this by having it ask you more questions. There’s a good idea - let’s train people to give up their secret questions after typing a valid password.