it'll be like the chip+pin cards that were 'unbreakable'.
Yeah, I get it, it's still a problem. My point though was not to solve this, it was to provide a way that your 'fingerprint hash' could be revoked and replaced with another. If your hash is based on fingerprint + password then that can be revoked and replaced with a hash based on fingerprint + newpassword, something you can't do with a fingerprint alone (or, at least limited to fingers, toes, ears etc).
"If the code and the comments disagree, then both are probably wrong." -- Norm Schryer