Google’s Plans To Do Away With Passwords
Google is pushing for computer user identification via hardware, and leaving the dated password method behind.
The world surrounding internet passwords is a stirring one. There are services to store all your passwords in one place so you only have to remember a master password. Websites are getting stricter with password requirements, demanding a capital letter, a number, and a hieroglyph, practically.
Google Vice President of Security Eric Grosse and Engineer Mayanl Upadhyay have opened the door to a password-less world, as outlined in their paper to be published in IEEE's Security and Privacy magazine. A few alternatives have been proposed, such as cryptographic cards for USBs, and even a wearable ring.
“Along with many in the industry, we feel passwords and simple bearer tokens such as cookies are no longer sufficient to keep users safe.”
Google has already started altering Google's web browser to work with the cards. A user would only have to plug in a USB and they would be logged in. As for the ring, the user would wear it like a normal ring, and it would allow the user to authorize a computer with access to certain sites or to the machine itself. They continued in the paper by saying, “We’d like your smartphone or smartcard-embedded finger ring to authorize a new computer via a tap on the computer, even in situations in which your phone might be without cellular connectivity.”
Though the web might not be completely free of passwords, it certainly will take a good step into verification via hardware, thus, making the information superhighway a little safer.