AC-7(3)—Biometric Attempt Limiting
>Control Description
Limit the number of unsuccessful biometric logon attempts to [Assignment: organization-defined number].
>Supplemental Guidance
Biometrics are probabilistic in nature. The ability to successfully authenticate can be impacted by many factors, including matching performance and presentation attack detection mechanisms. Organizations select the appropriate number of attempts for users based on organizationally-defined factors.