Tech giants announce support for passwordless login standard

0

Tech giants Apple, Google and Microsoft have announced plans to expand support for a common passwordless login standard created by the FIDO Alliance and the World Wide Web Consortium. The new feature will enable websites and apps to offer consumers consistent, secure and easy passwordless logins across all devices and platforms.

Password-only authentication is one of the biggest security issues on the web, and managing so many passwords is cumbersome for consumers, often leading to consumers reusing passwords. same in all services. This practice can lead to costly account takeovers, data breaches, and even stolen identities. While password managers and older forms of two-factor authentication offer incremental improvements, there has been industry-wide collaboration to create more convenient and secure login technology.

Expanded standards-based capabilities will give websites and applications the ability to offer an end-to-end passwordless option. Users will log in with the same action they take multiple times a day to unlock their devices, such as a simple fingerprint or face verification, or device PIN. This new approach protects against phishing and the connection will be radically more secure compared to passwords and legacy multi-factor technologies such as one-time passcodes sent by SMS.

Hundreds of technology companies and service providers around the world have worked through the FIDO Alliance and W3C to create the passwordless login standards that are already supported by billions of devices and all modern web browsers. Apple, Google, and Microsoft led the development of this expanded feature set and are now building support into their respective platforms.

These companies’ platforms already support FIDO Alliance standards to enable passwordless login on billions of industry-leading devices, but previous implementations required users to log into every website or app with each device before you can use the passwordless feature. Today’s announcement extends these platform implementations to provide users with two new features for more transparent and secure passwordless logins:

  1. Allow users to automatically access their FIDO login credentials (some call them a “passkey”) on many of their devices, even new ones, without having to re-enroll each account.
  2. Allow users to use FIDO authentication on their mobile device to log in to an app or website on a nearby device, regardless of operating system platform or browser they are running .

In addition to facilitating a better user experience, the broad support for this standards-based approach will allow service providers to offer FIDO credentials without the need for passwords as an alternative method of login or account recovery. .

These new features are expected to be available on Apple, Google, and Microsoft platforms over the coming year.

Jen Easterly, director of the US Cybersecurity and Infrastructure Security Agency, said the standards developed by the FIDO Alliance and the World Wide Web Consortium will ultimately keep people safe online. “I applaud the commitment of our industry partners to open standards that add flexibility for service providers and a better user experience for customers,” Easterly said, adding that Apple’s commitment, Google and Microsoft is “an important step in security”. journey to encourage integrated security best practices and help us move beyond passwords.”

Learn more about Apple

Share.

About Author

Comments are closed.