Microsoft recently introduced an important security update to its Windows Hello facial recognition login system, which is part of the Windows 11 operating system. As a result of the change, facial recognition no longer works in the dark, and the company has confirmed that this is not a technical error, but the result of a conscious decision.
The change took effect in April, when Microsoft quietly changed the way the system works. The aim was to eliminate a vulnerability in the facial recognition feature. The flaw was discovered by researchers at Nanyang Technological University in Singapore and Microsoft categorised it as “important”, although it also stressed that the vulnerability had not been publicly exploited and its practical risk was low.
Previously, Windows Hello used infrared sensors to identify the face, enabling devices to recognise the user's face in the dark. However, the new security measure now requires the colour camera to detect the user's face in visible light. This means that the feature only works in well-lit environments.
Microsoft has not said whether it is working on a solution to enable facial recognition in the dark without compromising security. However, the company has also indicated that it is taking user feedback into account, so it is possible that the way the system works will change in the future.
The change demonstrates the often delicate balance between digital security and user convenience. This case is also a reminder that facial recognition systems, while convenient, can sometimes require trade-offs.
