Google sets a war against passwords

Google is the new member in the league of companies and people that say that passwords are no longer adequately secure. In a research paper that will be published later this month, two of the security experts said that “Passwords are simple tokens such as cookies that can be stolen easily and are no longer sufficient to keep the users safe.”

Wired also reported that, Google envisions a new form of authentication that will let users sign into websites with the help of a minuscule USB. Its researchers have been fiddling with YubiKey’s cryptographic cards in particular, and have found that it takes only a few modifications to Chrome to get a seamless login process running smoothly. But Google wants it to be even easier by just ‘tapping your ring against the PC’.

Obviously for this to happen, Google must have widespread support for that on the web. They also said “Although we recognize that our initiative will likewise remain speculative until we’ve proven large scale acceptance, we’re eager to test it with other websites.” A protocol has been setup for this device-based authentication method, and it’s said to work independently of Google, keeping in mind the concerns of those who feel the company collects enough personal data.

Don’t expect the passwords to be phased out anytime soon, but there’s reason to believe we’ll eventually be able to try out this two-step authentication and randomized, impossible-to-remember, logins.


comments powered by Disqus