Next year may be the year when we finally say goodbye to passwords.
To make the Internet safer for everyone, Apple, Google and Microsoft have announced plans to extend support for a common password-free login standard backed by the FIDO Alliance and the W3C (World Wide Web Consortium). This will allow websites and applications to offer users “consistent, secure and easy password-free login on different devices and platforms”.
Password-only authentication is one of the biggest security issues on the web, and handling large numbers of passwords is complicated for users, often leading people to use the same password for all or multiple online accounts. This practice is the cause of account takeovers, data theft, and even identity theft. Although password managers and two-factor authentication offer some kind of security, the entire industry has teamed up to create a more convenient and secure login technology.
Google has announced plans to implement password-free login support on Android and Chrome to allow users to easily and securely log in to a variety of devices and websites, regardless of platform.
“This will make it easier to log in to all devices, websites and applications, regardless of platform – without the need for a password,” said Google.
Both Apple and Microsoft will expand support to iOS, macOS and Windows operating systems, as well as Safari and Edge web browsers.
The Fast IDentity Online Login System (FIDO) completely revokes passwords in favor of displaying a query asking the user to unlock the phone when logging in to a website or app.
This is made possible by storing a cryptographically protected FIDO letter of credit on the phone called the access key used to log in to the online account after unlocking the device.
“Once you do that, you won’t need a phone anymore and you can sign up by just unlocking your computer,” Google said.
The platforms of the three companies actually already support the password-free login standards created by the FIDO Alliance. However, according to previous implementations, users must log in to each website or application with each device in order to use the functionality without a password. They will now be able to automatically access their access key on many of their devices, even new ones, without having to log in to each account again.
“Even if you lose your phone, your access keys will be securely synchronized with your new phone from a cloud backup, allowing you to continue where your old device left off.”
With access keys, the goal is to enable sign-in from any device, regardless of the platform or browser running the device. “For example, users can sign in to Google Chrome, which runs on Microsoft Windows, using an access key on an Apple device,” Microsoft explained.
Password-free login is expected to be available on Apple, Google and Microsoft platforms next year.
“Users will log in the same way they unlock their devices multiple times a day, such as simple finger or face fingerprint verification or device PIN,” the FIDO alliance said.
“This new approach protects against phishing and logging will be radically more secure compared to passwords and outdated multi-factor technologies such as one-time codes sent via SMS.”
Source: Informacija.rs by www.informacija.rs.
*The article has been translated based on the content of Informacija.rs by www.informacija.rs. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!