Which one to choose

[Stingray]

Is there really a benefit of the Fingerprint Reader or not???? I have a choice between the Fingerprint Reader or a 1400x1050 screen as opposed to a 1024x768… this is on a 14.1” T43…. I have no experience with laptops….

[christopher_wolf]

Well, it depends; Do you want a fast alternative whilst keeping a good amount of security without having to remember a lengthy and complex password? If not, then you might not need it. It also makes filling out web forms a tad easier if you want to secure the passwrods. But unless you are working with classified material, patient records, confidential information, or just sensitive data in general...You aren't really going to use it alot. Yet, if you want to feel like you are in a James Bond or Mission Impossible Movie, a Thinkpad with a Fingerprint Reader cannot be beat; stealth black polymer coating with titanium/magnesium alloys, biometric security, advanced technology....MMmmmmmmmm

[StarTraveller]

The higher resolution will almost definitely serve you much better than a finger print reader, IMO. It's all about screen real estate and 1400x1050 is a whole lot more than 1024x768 - in fact, 87% more pixels. The pixels will be smaller, but you quickly accustom yourself to this. I have the 1600x1200 15" and I love it. I could never go back to a 1024x768 15" like I had on my previous laptop.

The finger print reader could save you from typing the occassional password, but if I had to choose between the two then I would certainly choose to type the password manually on a nice high resolution screen.

christopher_wolf,
When you configure the computer to use the finger print reader does that prevent you from typing a password instead? Or do the options co-exist?

Suppose you use the finger print reader swipe for boot security and for some reason that you can't get a clear reading on the swipe. Is your only option then to return the unit to Lenovo?

[christopher_wolf]

The options co-exist; never are you put into a situation where you might be locked out of your system if the fingerprint reader doesn't recognize 1 or all ten of your fingers; the same goes for encryption and decryption of files as well as web form passwords. Should the FPR not clear you for access, you can hit the Ctrl+Alt+Del combo to get to a pasword prompt and login that way. That said, though, I haven't had the fingerprint reader reject my fingerprint many times at all.

If you are asking whether or not you need a fingerprint reader, chances are you don't; it is just an added hybrid level of security/convenience which comes in handy if you have a 32 character or longer password that is either random or composed in such a way as to be non-discoverable though a brute force dictionary attack or a "guesstimate" attack.

[StarTraveller]

But if they co-exist then the security is no stronger than the weakest link so if your actual password is only 8-10 characters then it doesn't really matter if the finger print is equivalent to a password that's 30+ characters. Any intrusion attempt would focus on the weakest link and use that to bypass the stronger one.

Have I missed something? Do you actually have a password of length 30+ just in case the FPR fails?

I'm just trying to establish if the biometric security sales pitch is more of a pitch than a fact. Granted, the feature is convenient, but I can type my 10+ character passwords in less than 2-3 seconds...

[davidspalding]

The FP reader is more than a sales pitch. It can certainly be handy for the uses that Chris pointed out ... and I use most of them.

But consider if you login to a site (like, say, online banking, Paypal, VPN) which requires a minimum 12 character password, with capitalization, numbers and punctuation notes. Don't laugh, at work, our QA default password uses all three, and most are on the left side of the keyboard, making it a real finger-twister to type. I WISH my fingerprint reader was on a work computer.

Also consider that if you use the CSS to recall passwords via the FP reader, you are now able to use MUCH stronger passwords all around, because now you can recall them with a finger-swipe. (BTW, even if you DON'T document your passwords off-site, CSS lets you see your saved passwords ungarbled. But to get to that point ... heheh ... you have to swipe your finger.) It lets that "weakest" link get much stronger the one time you type it in, and save it with CSS.

Finally, you can configure a power-on password (good idea), and have the FP reader act on behalf of your power-on password (Yes, Virginia, you can still type the password instead, like if you're docked) ... THEN, it will also log you into Windows automagically (since you've already authenticated). It's much nicer than TweakUI's auto-logon setting. It's like logging into Windows at power-on, which is IMHO nicer for a "personal" computer.

Stingray: My 2¢ ... don't buy a system just because it has teh FP reader, but if a system you like has one, don't deprecate it just because it's got one. It's more than just a sales gimmick. My TP has the 1400 res, and it's much nicer than 1024; I would make that my first choice.

[christopher_wolf]

I can say I have a pretty long password; though I can't say what length it is.

The weakest link is always very subjective when you are dealing with any security/encryption system. The FPR simply removes the need for the user to type in the password in virtually all situations; thereby easing the load on the user whilst still keeping the system "secure;" i.e. very difficult to break into. For my lines of work, I find that the FPR is *very* useful. It is simply a matter of user recognition, and unless you are in the habit of changing your fignerprint fringe capacitance everyday, it is much easier than a lenghty password and most IT security or governmental security have no problems with it whatsoever.

[StarTraveller]

I'm starting to get the idea.

It primarily offers convenience, but through improved convenience the security paramters can be tweaked to allow for greater security and more diverse passwords.

That makes sense.

[davidspalding]

Uh, yeah, you summarized it far better than I.

[leegaard]

You have to have tried at FPR to really appreciate it.

I really like mine - Thats for sure. And its more that you really can have the long passwords that can be a PITA to type. The FPR dont care how long the password are. Of course you can type the 15+ characters password, but there a FPR really comes handy. I guess you are more proned to keep good password policy when you have a FPR.