CAP-024 — Biometric login (Face ID / fingerprint)¶
| Category | Security & trust |
| Business goal | Not yet linked to a business goal |
| Satisfying module | MOD-068 |
| Mode | GATE |
| BD owner | BD09 Technology |
| Human needed | No |
Authentication via device biometrics (Face ID, fingerprint, or equivalent) as the primary login method. Biometric verification is handled by the device OS and the result bound to a JWT session token issued by the access control module. No biometric data is transmitted to the bank's servers — only the device-attested authentication result.