Security News > 2022 > May > Google to Add Passwordless Authentication Support to Android and Chrome
"This will simplify sign-ins across devices, websites, and applications no matter the platform - without the need for a single password," Google said.
The new Fast IDentity Online sign-in system does away with passwords entirely in favor of displaying a prompt asking a user to unlock the phone when signing into a website or an application.
This is made possible by storing a cryptographically secured FIDO credential called a passkey on the phone that's used to log in to the online account after unlocking the device.
"Once you've done this, you won't need your phone again and you can sign-in by just unlocking your computer," Google said.
"Even if you lose your phone, your passkeys will securely sync to your new phone from cloud backup, allowing you to pick up right where your old device left off."
In a way, the method can be viewed as an extension of its own Google prompts for logging into accounts secured with two-factor authentication.
News URL
https://thehackernews.com/2022/05/google-to-add-passwordless.html
Related news
- Free VPN apps on Google Play turned Android phones into proxies (source)
- Google fixes Chrome zero-days exploited at Pwn2Own 2024 (source)
- Top 6 Passwordless Authentication Solutions for 2024 (source)
- Google agrees to delete Chrome browsing data of 136 million users (source)
- Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks (source)
- Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies (source)
- Google fixes one more Chrome zero-day exploited at Pwn2Own (source)
- Google Chrome Adds V8 Sandbox - A New Defense Against Browser Attacks (source)
- Google rolls out new Find My Device network to Android devices (source)
- Google Cloud Next 2024: New Data Center Chip and Chrome Enterprise Premium Join the Ecosystem (source)