Identity & Access
Biometric Authentication
Also known as: Biometrics, Biometric login
Definition
An authentication method that verifies identity based on unique physical or physiological traits such as fingerprints, faces, irises, or voice patterns.
Biometric authentication uses measurable biological characteristics to confirm that a user is who they claim to be. A capture device (sensor or camera) extracts features from the trait and compares them against a stored template, either on-device (in a secure enclave) or against a server-side database. Common modalities include fingerprint, face, iris, palm vein, and voice recognition. Biometrics offer strong usability and resist password reuse, but they raise privacy concerns because traits cannot be revoked if leaked, and presentation attacks (spoofed fingerprints, deepfakes) require liveness detection. They are typically combined with another factor in MFA flows for high-assurance scenarios.
Examples
- Apple Face ID unlocking an iPhone via a secure enclave-stored face template.
- A bank app using fingerprint authentication on Android to authorize a payment.
Related terms
Multi-Factor Authentication (MFA)
An authentication method that requires two or more independent factors — typically from different categories — before granting access.
FIDO2
FIDO2 — definition coming soon.
WebAuthn
WebAuthn — definition coming soon.
Passkey
Passkey — definition coming soon.
Behavioral Biometrics
A continuous-authentication technique that profiles unique user behaviors — typing rhythm, mouse movements, gait, or touchscreen gestures — to detect impostors.
Authentication
The process of verifying that an entity — user, device or service — really is who or what it claims to be before granting access.