Creating many complicated passwords to deter cyber-criminals from a dozen online accounts can be burdensome. While managing it is quite a chore since the number of data breaches is alarming. It is exciting to dream about the future where nobody has to worry about online password management. It’s a future that should require constant effort to change online passwords to avoid hackers and keep your data safe.
Here’s the good news. The biggest names in technology say that the dream of a password-less internet is close to becoming a reality. Apple, Microsoft, and Google are among those trying to achieve it. You would still have to prove your identity to log in to your accounts in the future. But at least you wouldn’t have to memorize endless strings of unique eight-character (or longer) passwords. The answer is still pretty complicated.
What Online Password Management Method Already Exists?
Removing passwords from your cybersecurity equation disregards what former Secretary of Homeland Security Michael Chertoff has called “the weakest link in cybersecurity.” According to Verizon, over 80% of data breaches were due to weak or compromised passwords.
Online Password Management: Microsoft
In September 2021, Microsoft announced that its users could go entirely password-less to access their Windows, Microsoft 365, and Xbox services. Instead, users can use options like the Windows Hello or Microsoft Authenticator apps, which allow fingerprints or facial recognition tools to log in securely.
In addition, Microsoft allows users to log in using a verification code sent to their phone or email. Physically, you can also do it via a security key —similar to a USB drive — that plugs into your computer and features encryption unique to you and your device.
“In recent years, tools like two-factor authentication have helped improve users’ account security.But hackers can still find ways to violate those security measures. As long as passwords are still part of the equation, they are vulnerable. “- Joy Chik, Microsoft’s Vice President of Identity.
Google
In addition, Google sells physical security keys, and its Smart Lock app enables you to tap a button on your Android or iOS device to log into your Google account on the web. In May 2021, the firm announced these tools were part of Google’s projects to create a future where you won’t need a password.
Likewise, Apple’s devices have been using Touch ID and Face ID features for several years. The tech firm is also developing its Passkeys feature to allow you to use those same fingerprints or facial recognition tools to create password-less logins for apps and accounts on your iOS devices.
So, in a way, password-less online password management is slowly becoming a reality. Microsoft says “nearly 100%” of its employees use password-less options to log into their corporate accounts. But getting every company to offer password-less options to employees and customers will surely take some time. It might be a long journey before everyone feels secure enough to dump passwords in favor of something new.
How Secure Are They?
Removing passwords altogether is not totally safe. First, verification codes sent via email or text messages can be intercepted by hackers. Hackers have shown the ability to trick fingerprint and facial recognition systems, sometimes by stealing your biometric data. And it’s much harder to change your face or fingerprints.
Second, some of today’s password-less options still ask you to create a PIN or security questions to back up your account. That’s not much different from having a password. In short, tech companies haven’t yet perfected the technology.
And lastly, there’s an issue of widespread adoption. As Wired said last year, most password-less features require you to own a smartphone or some other type of relatively new device. And while the great majority of Americans do own a smartphone, those devices range dramatically in terms of age and internal hardware.
Also, tech companies still need to make online accounts accessible across several platforms, not just on smartphones. The same goes for the people who don’t own smartphones, which is approximately 15% of the US population.
So, it will likely still be some time before enjoying hassle-free online password management. For now, continue typing and remembering your long, complex strings of characters into login boxes.
And for other tech news, read more here!
