Should we pump the brakes on the roll out of biometric security to first consider whether we are creating new vulnerabilities?