Mike, Head of Mobility Security at Bank Ltd, wants to disable all fingerprint authentication from devices. He believes that an image of the biometric data is extracted from the devices and stored in Google Cloud. Which of the following facts would you use to easy Mike’s concern? (Select 2)

(A) The device does not take an image of the print but a biometric model that then uses an algorithm to create a mathematical template.

(B) Fingerprint images are stored in a database on the users filesystem. That makes them inaccessible to Google.

(C) A biometric template cannot be copied to another device because it is signed with a device specific key when stored in the TEE.

(D) You assure Mike that it’s a common practice for all cloud companies to store biometric data for compliance.

Explanation

You can use the two facts mentioned below to ease Mike’s concern.

  • The device does not take an image of the print but a biometric model that then uses an algorithm to create a mathematical template. So, there is no danger of image storage and retrieval.
  • A biometric template cannot be copied to another device because it is signed with a device specific key when stored in the TEE. So, there is no danger of your fingerprint image being leaked online.

Conclusion

This question is from the Android Enterprise Professional (Updated) Post-exam Exam and the Android Enterprise Security & Privacy Final Exam. You can find answers to all the questions asked in both exams on our Android Enterprise Professional (Updated) Post-exam Exam Answers page and Android Enterprise Security & Privacy Final Exam Answers page.

Leave a Comment

Share via
Copy link
Powered by Social Snap