@jfred@mastodon.sdf.org@kyle@librem.one Sure, but it's worth noting what we're comparing it to. It's possible to spoof a biometric, but it's also possible to shoulder-surf someone's passcode. When in public, I'd honestly consider that a greater risk than someone printing a replica fingerprint to unlock my device.
Different auth mechanisms have tradeoffs for different threat models, and I think that's fine so long as you're aware of them. When crossing a border? Sure, I'll disable biometric auth.