The standalone Touch ID key button is just under the size of 2x2x1 Lego. I integrated mine into a space diorama set for better vibes: https://imgur.com/a/Im7t9Xb
I came upon a spare Touch ID keyboard. I just got Command strips and adhered the whole keyboard to the underside of my desk. USB cable is clipped to the desk and goes to my dock. I've got the fingerprint reader right next to my standing desk controls so it's really convenient, and I still get to use my Keychron as my keyboard. The low profile of the Apple keyboard means it doesn't get in the way.
Also every time I need to unlock my Mac or sudo I get to feel like I'm tripping the silent alarm at the bank.
I have two, Ducky One 2 TKL (Cherry Brown), and a Durgod Taurus K320 TKL (Cherry Blue). Good keyboards and both similar to each other, but just find the magic keyboard a nicer experience.
I tried living with just the Apple Watch instead of the Touch ID for a few months to see how reliable it was...
Sometimes it would take a few minutes in the morning before my Mac would even recognize 'hey, there's a watch' (typing in my full password was usually much quicker than waiting for the watch unlock).
Sometimes whatever notification happens that triggers the watch to vibrate and allow the double-squeeze-to-accept action would just... not.
Other times the above notification would pop up about 8-15 seconds after the prompt on the screen.
It was inconsistent enough I got _really_ good at typing my password, since it was normally quicker than waiting on the Apple Watch.
Contrast that with the Touch ID, that's always ready to go.
You can use apple watch for password managers and all macos passwords prompts. Does require an apple silicon mac iirc.
The main downside is it doesn't always recognize and it takes a few seconds to trigger. I'd love a separate touch id. But absent that the watch is quite useful.
there's a PAM that you can install that lets you use your Watch for superuser actions. i uninstalled it some years ago because it got kind-of old and Watch authentication is buggy anyway.
The Apple Watch knows that it's you, or at least somebody that knows your PIN.
It's tied to your iPhone and Apple account during initial setup.
Each time you put the Apple Watch on, you have to enter your PIN to unlock it. It can only perform automatic unlocking of your Mac and iPhone in this unlocked state.
The watch does automatic wrist detection and it will automatically RE-lock itself as soon as you take it off.
This is reasonably secure for most needs, though of course you can disable all of this automatic unlocking if you want more security. I forget if it's on by default or not. IIRC I had to enable it but I'm not too sure.
I'm not sure that "PIN + hardware dongle that requires continuous skin contact" is meaningfully less secure than a fingerprint sensor, but at least Apple puts you in the driver's seat to choose the level you're most comfortable with.
I've found the Bluetooth connectivity quite reliable. When it doesn't work, it's because the watch re-locked itself.
The watch needs to be unlocked either with a PIN code or can be set to unlock on close proximity to iPhone which unlocks via Face ID (or Touch ID, or a passcode). Once it is in an authenticated state it remains unlocked while it is attached to a wrist. I’m not totally clear how it detects when it separates from a wrist (probably a light sensor, heart rate sensor or some heuristic derived from the both - but it’s pretty instantaneous and reliable). “Privileged” actions like payments or escalation prompts still require a double click of the watch’s physical button to confirm, but in this authenticated state it is possible to use the watch to unlock Mac or iPhone based on proximity alone.
It has no concept of “who” you are, only that it got positively authenticated while on a wrist by proximity to your iPhone unlock or a manual correct PIN entry and hasn’t separated from that wrist since.
if i remember right, to activate the security (touch id like) feature you need the phone to be on your account. there are more restrictions than just pure activation.
I was wondering if it'd be possible to go further, and actually use it as a fully fledged keyboard, but with your choice of switches and mechanical layout... and turns out that somebody has been doing that already! basically reverse-engineering the matrix and hooking up your own switches to the logic board. You get TouchID, pretty good BT performance and integration in the Apple ecosystem, good battery life, ... and all in a single device.
I actually have a small Magic Keyboard under my desk (in the keyboard tray). It’s positioned, so that I can reach under, without looking, and touch the Touch ID.
I don’t like the rest of the keyboard. I have a big Keychron on top of the desk, that I use for typing.
I’ve been griping over this for years now. I get pretty bad RSI so like using a split mechanical keyboard for coding, but I also use long/complex passwords so I like using Touch ID too. It dumbfounds me that you can’t get a Touch ID pad or even a numpad with Touch ID to sit next to aftermarket keyboards.
I bought a used Magic Keyboard on eBay for about $50 to sit within reach of my mechanical keyboard. Considered mounting it under my desk but haven’t bothered yet.
So this setup is for people who use a Mac, but not a Mac laptop (or who keep the laptop closed and use it exclusively with an external monitor), and who also don't want to buy Apple's keyboard with Touch ID, or an Apple Watch. I gotta say, I don't think that's a huge group of people.
Having a mac laptop doesn't help either if you use it primarily as a secondary monitor, relatively far away from your reach. This is a pretty standard setup in enterprise IMHO.
Then not wanting to wear a watch and wishing for a better keyboard than the Apple one don't sound outlandish either.
This is a bit offtopic (but im genuinely curious since i dont use iPhones) but is there any advantage to using faceid over touchid in iphones?
This Notch/Dynamic Island looks terrible IMO. Also you can "Authorize" stuff without even having physical access to your device, someone could in theory pick up your phone, make it face towards you, say "LOOK!" and your phone is unlocked.
Also i found it far more unreliable to instantly unlock.
A fingerprint reader inside the powerbutton is the way to go IMO, you instantly unlock when u press the power button, you have to actually touch the device to verify and you have no notch.
IIRC just looking at the confirmation if i wanted to buy something in the app store via face id was enough to confirm it.
I believe Apple UX guidelines mandate some sort of explicit confirmation before taking any action after authenticating the user with Face ID, but I've unfortunately also seen many apps not really conform to that.
> IIRC just looking at the confirmation if i wanted to buy something in the app store via face id was enough to confirm it.
Apple themselves are generally good about asking for explicit confirmation, but annoyingly in a way nobody else can replicate: They repurposed double pressing the power button, which is otherwise the Apple Pay secure attention sequence, for exactly one non-Apple-Pay action – buying something in the App Store (or iTunes store etc.)
> This is a bit offtopic (but im genuinely curious since i dont use iPhones) but is there any advantage to using faceid over touchid in iphones?
Touch ID is far, far, far superior to Face ID.
I just want Touch ID to return on iPhones. Oh how I hate, hate, hate Face ID and its inability to read my face without my glasses when I get up in the morning.
For me the biggest advantage of faceid is that it isn't bothered by wet fingers or gloves. It works most of the time, where I remember struggling more (though still not often) with touchid. This was with an iphone 8, so I don't know how good they are now.
FaceID is much slower than TouchID, FaceID fails with wet glasses, it fails with a breathing mask. I can’t use the phone with wet fingers or gloves so needing a bare dry finger for TouchID is fine. FaceID annoyingly worse.
This. I’d complain more about Face ID if Apple Pay wasn’t the first payment mechanism I’ve used that reliably fulfills the promise of being faster/easier than cash, and Face ID + mechanical button is a big part of that.
Still, Apple Pay was way more reliable with TouchID.
Step 1 : take the phone off your pocket
Step 2 : put it against the terminal while touching (not pressing) the home button.
Step 3 : there is no step 3, you already paid because even if the phone wasn’t unlocked the NFC reader automatically unlocked it, opened your default card and validated the payment thanks to your finger being on the reader.
Compared to FaceID, no need to double press a button and to watch your screen waiting for the little animation to finish.
Don’t get me wrong, paying with FaceID totally works and it’s fast. But paying with TouchID wasn’t fast, it was instant and thoughtless.
I find both of them equally (un)reliable. I feel like they both work(ed) about 80% of the time.
The most annoying failure case for FaceID for me is using it in bed. I'm a side sleeper so half of my face is mushed into the pillow. I realize how lazy this sounds, but when I'm half asleep... that is exactly when I don't feel like tapping out a PIN or repositioning my head.
A fingerprint reader inside the powerbutton
is the way to go IMO
I really wish the phone had both methods, TBH.
I love the "reader inside the powerbutton" idea, but... phone cases....
Yea, the faceid in the bed thing is very annoying when using my "tinker iphone" in the bed. Havent found Fingerprint auth unreliable, but my hands and phone mostly stay very clean and i have my finger added 2-3 times for faster and more reliable scans.
My phone has the fingerprint reader in the power button, all cases just leave the powerbutton open.
You just have to not look at your phone. I don’t mean “rotate your head away”, I mean just don’t look at it with your eyes. If your eyes aren’t looking at the phone it won’t unlock.
They scan your eyes and make sure you're actually looking at it to prevent exactly that attack. The problem with it is twins, or even people who's faces are similar enough (mother/daughter or sisters) can be enough to unlock.
Isnt the issue not the wetness itself but the wrinkles your finger get after being in water for longer periods of time?
Atleast I cant remember when rain was so bad my fingers wrinkled
true after a bath tho
No, when I had a Touch ID iPhone, it would often have trouble reading my fingerprint even if my hands were just still damp from being washed in the sink for a few seconds and not fully towel-dried.
I really miss touch ID on my phone, all of the swiping is a little cumbersome and sore after a while. Stretching my hand to swipe up down and so forth. I deeply miss the home button.
I’m on this bandwagon. Have my own keyboard (literally just finished soldering and 3D printing one) and still have to have the Apple keyboard cluttering my desk for biometrics). Have been thinking about this for a while, but it feels incredibly wasteful to spoil a useful piece of equipment just for the sake of getting at that sensor.
I was always surprised that Apple never released a track pad with the Touch ID integrated in one of the corners. I’d purchase one in a heart beat if they did.
Doesn't Apple have a Face ID trick with a paired iPhone to replace Touch ID on macOS?
That is probably why. They prefer you to buy an iPhone than to sell you another gadget.
By the way, I like the idea but for some reason it unpairs randomly and I have to go into settings and re-enable it every couple of months. Really annoying.
I just want Touch ID to return on iPhones. Oh how I hate, hate, hate Face ID and its inability to read my face without my glasses when I get up in the morning. How is it that Moto figured out how to put the touch sensor on the back of the phone years ago, but Apple refuses?
A big proportion of everyone who uses a non-Apple keyboard with their Mac, I'd say. I would absolutely use one with my ergonomic keyboard, TouchID is so much more convenient than constantly typing your password in.
That has got to be a joke. It's like they're mocking their customers. I can't stop laughing at the sight of the guy they somehow convinced to model this thing in their promotional photo.
It's a trendy fashion item for a particular subset of rich fashion people, which is not most people. It makes total sense in that context. It doesn't really need to make sense to everybody else.
They're referring to A-POC https://www.moma.org/collection/works/100361 In any case, these were sold in 10 Apple Stores worldwide, and only a single US store. They were aimed at an Asian audience, as far as I understand.
I don’t get the extreme negative reaction here and elsewhere. It’s not for me either, but I also don’t think it looks ridiculous – it just a little bag. There’s a pretty hard limit on how crazy that can look. It’s like the detractors aren’t aware or accepting that there are people with different tastes in the world. Why not just say “it’s not for me”?
I used to have terrible rsi and switched to a kinesis advantage, if I could get a little touchid pad that i could attach with doublesided tape to it, it would be awesome. As it stands I just type my password a lot.
Because if someone is going to all the trouble of getting a non-Apple keyboard, TouchID isn't going to convince them to go back to an Apple keyboard. They're using a different keyboard because things like key travel or ergonomics are a necessity.
Apple could sell a standalone TouchID sensor and charge $50 or $60 for it.
Yeah - I’ve heard people say that the laptop lid (screen) is too thin for the sensors required to do proper FaceID (as opposed to just using the existing optical camera, which is easily fooled). But I don’t understand why the notch part of the screen just couldn’t be a bit deeper (and have a corresponding cutout on the bottom part of the laptop to accomodate it when the lid is closed).
Then again, given how often the FaceID on my iPhone fails to recognise me…
So they do a protocol bootstrap to link the sensor to the secure zone in some manner rooted in the trust region CA, and then do what they need without divulging secrets, over the USB bus? ok. that (or a more cogent version) would make sense.
If you just package this button up, as a USB device, it's no different, if it can be bootstrapped as an input device "to" the secure zone.
It's very annoying when I'm using my personal mac mini and have to type my password a billion times, compared to my work macbook which lets me touch id.
But is it annoying enough I'd actually buy one of these hypothetical $50 boxes? IDK.... I've got my two machines on a KVM so I can use my Kinesis keyboard with both of them.
This comment could use some elaboration. For those that don't know you can use a Yubikey that supports PIV as a smart card for logging into macOS and performing a range of admin authentication operations with just the PIN, not just in the GUI but sudo as well (and of course more directly for SSH etc). It's not a perfect substitute, no ApplePay, but it means you can have a long complex password and only need a 6-8 digit PIN for most usage while still being pretty safe, and has some positives of its own in a multiuser or machine environment. It's a very reasonable option to consider IMO, even though yes it'd absolutely be nice if Apple did better on the hardware auth front.
Your comment just reminded me I can use my Yubikey to unlock my Linux laptop but hadn't set this up yet. I've been typing my password each time like an animal! Thanks. :-)
There is no scalable market. They want to control the hardware for quality and margins. They already sell a keyboard with Touch ID included. Mac accessories are far from their focus area.
If they made something that was just the sensor and logic board that they already manufacture, and sold it for exactly the same US$149 retail price _or more_, there are people in this thread who would buy it.
That’s not enough volume for Apple. This is a company comfortable sitting on $100bn in cash.
If they sold 1 million of those, it’s not worth it for them. Even 10 million units likely isn’t something they’re interested in, and I doubt they’d see anything close to that.
100% - they quit the much more lucrative WiFi business. The funny thing is the post, the likely the most interested party, who already spent $150+effort on a keyboard with TouchID admitted they are willing to spend $50. Literally the most excited customer who pays $150 is expecting a lower price than the keyboard. That simply shows the existence of such product is counterproductive to Apple's total revenue.
It's so much more fun to use a Mac without TouchID. The whole Safari password autofill experience is much faster and less annoying when you don't have TouchID (does not ask for any approval while you're logged in/Keychain is unlocked.) If there's a `defaults write` command I can run to emulate my Mac mini experience on a MacBook please let me know.
P.S. Liquid Glass + TouchID approval needed for every Keychain entry == Windows Vista
System Settings > Touch ID & Password > Use Touch ID for autofilling passwords. Turn this off on Macs with Touch ID and Safari will autofill without requiring Touch ID.
1. Buy an old A2449 keyboard, ideally one with broken keys or battery but working touch ID. I got mine for $45 shipped. Recent listing example: https://www.ebay.com/sch/i.html?_nkw=magic+keyboard+a2449&_s...
2. Pry it apart as described in the article (really, there is so much glue) and then use some spare Legos to make an enclosure like this person: https://grepjason.sh/2022/standalone-touch-id-part-2
The standalone Touch ID key button is just under the size of 2x2x1 Lego. I integrated mine into a space diorama set for better vibes: https://imgur.com/a/Im7t9Xb
reply