CYBERSECURITY TiP: Have you heard of passwordless authentication?
Good evening WA Friends,
I hope you are doing well. I left my device at home today so I was not able to log into WA until now.
Just a quick post on an initiative to replace the password. There is the FIDO alliance that created a standard to create a simpler, stronger, authentication. The Alliance has the support of the major tech players and they are already implementing this standard into their authenticators now.
If you are interested, the link to the FIDO alliance is here - https://fidoalliance.org/. Information about the new standard - https://fidoalliance.org/fido-authentication/.
I have seen this movie before but this time it feels different. The password has been the issue with insecure systems from the beginning and will continue to be an issue. Two-factor authentication has helped but that is increasingly being hacked.
The cool aspect of this standard is the authentication is stored on the local device only. That makes it more secure right out of the box. Is it 100% foolproof? Of course not.
It will be interesting how all this plays out and if users will embrace the new log-in process. The fact that you will not have to remember passwords is always a good thing. I can not remember passwords. There are too many to remember.
Take a look and let me know what you think of this.
Cheers,
Keith
Recent Comments
14
This appears to be very valuable information. I will explore this further as passwords are time-consuming to deal with. I have mine all recorded offline, but they continue to be a problem.
I have avoided Two-factor authentication and will completely bypass that now!
Thanks very much, Keith.
Valerie
This looks promising. I would be curious to learn more. Anything to make it easier and more secure is a good thing.
Susan
I am working on another post on this. I have done a bit of research and they are closer to making this a reality than I thought but it is not as easy as they make it sound.
I keep my randomly generated passwords in a password-protected Word doc, which I also keep off-line on a thumb drive. I would welcome a better way.
We will see if this thing takes off. There is a lot of work being done by the big guys. I am playing around with a couple of methods now. And there is a Wordpress plugin that supports the new standard.
See more comments
It's becoming overwhelming storing many passwords.
I will read that up. Thanks for the links.
I know. A new way has to work. There is a lot of momentum this time.