The key behind BioPassword is its definable user threshold, which determines the acceptable score for authentication. The higher the threshold is set, the less likely the chance of compromise, but the greater the chance of error and the need to re-enter credentials.
A strong combination of user name, password and pass phrase repetition is required for optimal results. Therefore, users need to be educated on how they are being authenticated, and need to be prepared to re-enter their credentials if they pause in mid-password.
BioPassword may be a viable alternative to token-based authentication or costly biometrics for financial institutions that need to meet short-term FFIEC requirements for dual-factor authentication. However, it may not yet be attractive for servicing typical customers because of the education requirements and frustration of login failures due to any change in keystroke pattern.
This was first published in June 2006