How Would You Build a Foolproof Attendance System?

Question

I'm building a privacy-focused, secure attendance system that works solely with students' smartphones&mdash;no additional hardware. Here's my approach so far: Biometric login: Ensures only the phone owner can log in. Geo-fencing: Verifies the user is within the classroom perimeter. OTP/QR Code: Adds a layer of real-time verification. I'd like advice on how to improve this, because there are still some flaws in such a system. I want to avoid buying any additional hardware, and just depend on smartphones, and make it safe and anti-cheat in nature. Please chip in your expertise and experience. Thanks!

phillipseamore · Accepted Answer

If you have a building access control system just add the students to that, they clock in and out of rooms (most access control systems don't just control locks, they are widely used to clock staff in/out of work). There are solutions that use updated and rotating keys to combat cloning when phones are used instead of RFID/NFC cards. QR codes can be sent as photos or even live streams if you have short validity so you can't guarantee proximity - but RFID/NFC will except someone is clocking other students in. That would be easily noticeable if the readers are within the view of teachers, staff and other students. On many phones RFID/NFC also works just fine without having to open up an app first.

stop50 · Answer

How do they access it? Wifi or internet?How do you verify that the data you receive is true? Any data you receive must be expected to be forged.