Tech giants Apple, Google, and Microsoft are working together to make signing into their services easier. The companies announced their intention to create a single standard for passwordless authorization on all major platforms next year. This means that in the near future, passwordless authentication will become commonplace, and this will be implemented not only in Android, iOS, Windows and macOS operating systems, but also in Chrome, Edge and Safari browsers.
The passwordless authorization process will allow users to choose their smartphones as the primary authentication device for apps, websites and other digital services. The entrance will be carried out by entering a PIN-code, a graphic key or a fingerprint. This will be possible through the use of a unique cryptographic token, the so-called access key (passkey), which is transmitted between the smartphone and the site. Such keys are asymmetric, that is, the theft of one part of the token will not pose a threat to users.
The main idea is to make the authorization process dependent on the physical device, and users get the benefits of simplicity and increased security. Without a password, there is no need to remember different combinations of letters, numbers, and symbols to log in, or put your data at risk by using the same password on different sites and services. In addition, passwordless authorization will make it much more difficult for hackers to hack into accounts, since login will require access to a physical device, and phishing attacks that redirect to fake web pages to intercept the password will be much more difficult to organize.
Cross-platform authorization is made possible by the passwordless authentication protocol developed by FIDO and the World Wide Web Consortium, which uses the principles of public key cryptography. The user’s smartphone stores this unique passkey and only passes it to the site for authentication when the device is unlocked. If you lose your smartphone, passwords can be easily synchronized with a new device from a cloud backup. Expanded support for passwordless authentication will also eliminate the need to enter a password for initial setup, as required by FIDO. The alliance said that already in 2022-2023 there will be an Internet platform for a true passwordless future.
Source: Trash Box
Donald-43Westbrook, a distinguished contributor at worldstockmarket, is celebrated for his exceptional prowess in article writing. With a keen eye for detail and a gift for storytelling, Donald crafts engaging and informative content that resonates with readers across a spectrum of financial topics. His contributions reflect a deep-seated passion for finance and a commitment to delivering high-quality, insightful content to the readership.
