Since “WebUSB” providing the capability to a browser to access and perform IO operations on USB devices straight from the browser. The next big thing is set to hit the market, biometric authentication by Chrome(Google). The feature will be an addition to the credential management feature which featured on Chrome 51 update. The feature has been provided in a beta version which is available for both Android and Mac OS Touch IDs. Sadly Windows devices, iPhones, and iPads aren’t supported yet.
The update doesn’t restrict to web authentication using fingerprints only but also allows face detection, reading of barcodes, QR codes too. TLS protocol has been updated to v1.3. Also, enhancements have been made in WebUSB to allow heavy processing without interfering with the main application. WebUSB now creates a separate thread to manage such handles. Adding to security, no authentication will now be supported in full-screen mode, to avoid accidental advantage for attackers who can get biometrics by social engineering attacks. Thinking of such attacks is also something we should consider, since on compromisation of such data will lead to a lot of problems, since there is no option to change a biometric ID. You cannot change your fingerprint and face, right? Or maybe