Universal Windows Platform (UWP)
A Microsoft platform for building and publishing apps for Windows desktop devices.
2,811 questions
How to dectect changes of windows hello PIN, fingerprint or face.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 35%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHL%3C/text%3E%3C/svg%3E)
Hyoil Lee
1
Reputation point
I would like to know how to detect changes of windows hello after enrolling a user with windows hello.
For example,
User A is activated windows hello and register PIN with "1234".
User A enrolls in the service with windows hello.
Someday, User A change the PIN or register new fingerprint in windows Hello.
User A try to authenticate with new PIN or fingerprint for using the service.
I would like to know there is any changes of windows hello between enrollment and authentication.
{count} votes
-
Richard Zhang-MSFT 6,936 Reputation points2020-04-23T01:07:20.39+00:00 Hello, is this the problem you encountered during the development of UWP applications? The UWP application can request the system to perform fingerprint or Windows Hello verification and obtain the verification result. But it is impossible to know whether the user has changed the biometric information.
-
Hyoil Lee 1 Reputation point
2020-04-23T03:44:54.427+00:00 II am using the WebAuthn API(https://github.com/microsoft/webauthn/blob/master/webauthn.h) with windows hello.
Do you have any plan to support that feature for security ?
It is little bit different, but android provides similar feature.
- https://developer.android.com/training/articles/keystore ------------------------------------------------------------------------------------------------------------------------------------
User authentication authorizes a specific cryptographic operation associated with one key. In this mode, each operation involving such a key must be individually authorized by the user. Currently, the only means of such authorization is fingerprint authentication: FingerprintManager.authenticate. Such keys can only be generated or imported if at least one fingerprint is enrolled (see FingerprintManager.hasEnrolledFingerprints). These keys become permanently invalidated once a new fingerprint is enrolled or all fingerprints are unenrolled.
- https://developer.android.com/training/articles/keystore ------------------------------------------------------------------------------------------------------------------------------------
-
Richard Zhang-MSFT 6,936 Reputation points
2020-04-23T03:53:06.313+00:00 This seems to be the content of Web Authentication, and according to the description, the API is win32API and may not be suitable for UWP applications. Currently Microsoft Q&A is still in the preview stage, the content of WebAuthentication is not supported, you can get a more professional answer at MSDN
Sign in to comment