Tech giants join password replacement standard effort

By on
Tech giants join password replacement standard effort

Google, Apple and Microsoft have joined forces with the FIDO Alliance and the World Wide Web Consortium to do away with passwords in day-to-day use, using a new sign-in standard derived from two-factor authentication (2FA).

Over the years, managing password-based logins has become increasingly fraught with difficulty for users. 

Long and complex passphrases are required to be secure and unguessable, but they are difficult for users to remember.

Users often recycle passwords across multiple sites and services, a risky practice that can lead to account compromise, financial loss and identity theft.

To remedy this, the three tech giants have thrown their weight behind a proposed FIDO Alliance and W3C standard, that will act as a replacement for passwords in most situations.

The multi-device FIDO credentials which is also known as a passkey allows apps, websites and services to issue user authentication requests over the close-proximity Bluetooth protocol when logging in.

Users nearby the service or site they're logging into then authenticate for example on their smartphones with biometrics, a PIN, or another system.

Passkeys can transitioned via the cloud easily, along with retrieving forgotten credentials using an authenticator app, or even a password.

The standard is intended to be operating system independent and cross-platform.

Google said it will make the passkey feature available on Android, ChromeOS and the Chrome web browser, and possibly on older devices as well.


Got a news tip for our journalists? Share it with us anonymously here.
© CRN New Zealand

Most Read Articles