←back to thread

CAPTCHAs are over (in ticketing)

(behind.pretix.eu)
204 points pabs3 | 1 comments | 25 May 25 00:37 UTC | HN request time: 0.351s | source
Show context
nikolayasdf123 ◴[25 May 25 02:36 UTC] No.44085128[source]
how about on-device biometrics?

most of traffic is from mobile devices anyways. they have biometrics (e.g. Apple FaceID, fingerprint). they also have DeviceCheck (Apple Hardware + Apple servers) integrity checks of device/binary that is making requests. it is also free and private.

why using this technology is not part of conversation? seems like utmost strongest guarantees and perfect fit?

replies(3): >>44085863 #>>44085919 #>>44088243 #
1. arp242 ◴[25 May 25 14:49 UTC] No.44088243[source]
So how would this work in concrete terms? How will this stop bad-faith actors who will go out of their way to abuse/fake things? How does it solve the "BAP theorem"? You can't just sprinkle a term like "on-device biometrics" and declare that solves it.