Google is getting ready to introduce a new feature called Identity Check that will require users to use their biometrics to unlock apps. This feature will only be mandatory when the device is not in a trusted location, so even if someone knows your phone’s lock screen PIN, they won’t be able to access your apps and steal your data.
Your phone’s lock screen is crucial for keeping your apps and data secure. However, if a thief manages to see your lock screen PIN and steals your phone, they could potentially access your apps and personal information. While Android’s biometric prompt adds an extra layer of security, many apps allow you to enter the device’s lock screen credentials as a backup.
In the latest Android 15 QPR1 Beta 2 release, evidence was found suggesting that Google is working on a solution inspired by Apple’s Stolen Device Protection feature. A new string named “mandatory_biometrics_prompt_description” was discovered in the Settings app, indicating that an “Identity Check is on.” This feature will prevent apps from using the lock screen credentials as a fallback when triggered by “mandatory biometrics.”
Although the exact conditions for triggering “mandatory biometrics” are not yet clear, it seems that Google is planning to utilize the Trusted Places feature to determine when the device is outside of a trusted location. This would prompt the system to require biometric authentication for accessing certain actions, similar to how iPhones handle Stolen Device Protection.
The new feature, tentatively named Identity Check, is expected to enhance the security of Android devices once it is implemented. It may require Android 15 QPR1 or later versions due to the fundamental changes it will bring to the biometric prompt dialog behavior.
Overall, the introduction of Identity Check by Google demonstrates a proactive approach to enhancing user data security and privacy on Android devices. By leveraging biometric authentication in specific scenarios, users can have greater peace of mind knowing that their apps and sensitive information are better protected from unauthorized access.