With the aim of “making the web safer and more usable for everyone”, appleGoogle and Microsoft committed to expanding password-free sign-in support across all websites, the applications and systems they control implement the technology over the next year. The announcement was made jointly by technology giants this Thursday (5), which also commemorates World Password Day.
replace the traditional password verification, new features will allow companies to offer an end-to-end password-free option. They’ll be available on iOS, macOS, Safari, Android, Google Chrome, Windows, and Microsoft Edge, among other platforms.
Users will be able to log in using the same multiple-day process to unlock their device using the device’s fingerprint, facial recognition, or PIN. According to major technologies, new method more trustworthy common passwords and SMS verificationIncreases protection against phishing attacks.
This passwordless authentication standard was developed by the FIDO Alliance and the World Wide Web Consortium (W3C) and is already supported in services controlled by Apple, Google, and Microsoft, among other companies. However, in order to use the technique, you need to log in separately on each platform and device.
practical example
Google said in a statement, Password-free login that will be enabled on all its platforms in the coming months. According to the search giant, you can set your mobile phone as the main authentication device for websites, apps and other digital services.
After selection, the device will store a FIDO-provided credential based on: public key cryptography, with this you can unlock your account online. Using the defined default action – biometrics, PIN or drawing a pattern on the screen – will be enough to enter online services without having to enter the password.
The mechanism provides several advantages, ending the practice of using the same password on all websites, making it harder for cybercriminals to take action. Technology can also make it easier Account recovery Since the access keys are stored in a backup in the cloud, no new registration is required in case the phone is lost.
Source: Tec Mundo
