Feature Request: Enable Biometric Authentication during Secure Startup
I am requesting a change to the current security architecture that disables biometrics (fingerprint/face) after a device restart. Relying solely on a PIN/Pattern for the first unlock is a security risk, as codes are vulnerable to shoulder-surfing, smudge attacks, and social engineering. Biometrics are significantly harder to compromise.
I propose that Samsung/Android implement a "Background Loading" protocol for biometrics during boot. The device should remain locked until the PIN is entered, but the biometric sensor should be active simultaneously. This would allow for a more secure Multi-Factor Authentication (MFA) environment from a cold start, rather than defaulting to a weaker, code-only method that leaves PII vulnerable.
Thank you for taking the time to share your valuable feedback and for outlining your feature request regarding biometric authentication during secure startup. We appreciate your interest in enhancing device security and the detailed explanation you provided about enabling biometric sensors during the initial unlock after a device restart.
Please note that on Samsung Galaxy devices, biometric authentication such as Fingerprint or Face Recognition is intentionally disabled until the device is first unlocked with a PIN, password, or pattern after a restart. This behavior is part of Android’s security architecture and is designed to protect sensitive information stored on the device using hardware-backed encryption.
Requiring the primary unlock method after boot ensures that the device owner is authenticated before biometric data and other protected services become accessible.
After the first successful unlock using the PIN, password, or pattern, biometric authentication becomes available again for subsequent unlocks and secure actions. This implementation helps maintain the integrity of the device’s encryption keys and protects personal data during the secure startup process.
We sincerely appreciate you sharing your suggestion regarding the possibility of enabling biometrics alongside the primary authentication method during boot. Feedback such as yours plays an important role in helping us understand customer expectations and potential improvements. Your recommendation will be forwarded to the relevant team for consideration in future software and security enhancements.
Thank you again for your thoughtful input and for being part of the Samsung community.
