FWIW, touchID is highly integrated with the T2 security chip, which isn't likely to be virtualizable (is that a word?)...suspect this one's not something that the VMWare wizards will be able to pull off.

Hi,

While that might be true.. the Touch ID functionality is exposed to other applications.

See for example the following blog post on how-to use touch id with sudo:

https://www.radiotope.com/blog/?p=posts/2019/10/02/sudoTouchID.md

Which is a feature that is actually super handy.

If VMware would implement something like that, then -while probably a great feature- it will have some security implications.

Of course that does not mean they could add it as a sensor to the VM, but perhaps there are some frameworks who could offer that functionality in another way.

--

Wil

| Author of Vimalin. The virtual machine Backup app for VMware Fusion, VMware Workstation and Player |
| More info at vimalin.com | Twitter @wilva

Good point, they could use that API, though the OS itself probably won't work without direct hardware access.

And yeah, I can see all sorts of ways to intercept it.

Well. They do allow TPM in VM, which is also "hardware based" Windows systems...

Knowing that, it should be perfectly do-able with TouchID too on the Mac side... Security may be a reason not to implement it, but if it's gonna be a security issue with one , then its also a security issue with the other too  with encrypting in "software" hypervisor.