Home / Innovative / With the latest Android devices, you can now log in to apps without a password

With the latest Android devices, you can now log in to apps without a password

A good reason to update to your latest version of Google Play Services: You can now sign in to Android apps version 7.0 and higher on apps and websites without having to enter a password. With FIDO2, an open standard developed by the FIDO Alliance, the update will instead use your fingerprint or PIN to sign you up for various services.

Although complex passwords can be a secure way to back up your account, they are often long, hard to remember, and should be updated regularly (unless you use a password manager.) Two-factor authentication is also helpful, but can be annoying and difficult to access on international trips. With this update and certification, Google and the FIDO Alliance hope to move users to even safer methods, such as biometric data, that are difficult to steal and replicate. The standard also requires that your data be authenticated locally so that no private information is transferred to the apps and services that you log in to.

It is overlooked that some of this technology does not actually allow users to use biometric data for login. Instead, authentication is moved from a "shared secret" model ̵

1; where both you and the service you interact with need to know a certain "secret" – your password – to an "asymmetrical" model where you just have to prove it You need to know a secret, but the remote service does not know the secret itself, "says Christiaan Brand, product manager for identity and security products at Google." This is in many ways better because of a breach of your data nothing is obscured on the server side, which may affect the keys used to access the service. "

For devices without a fingerprint sensor, this is allowed by Android. You can use other methods, such as a PIN or swipe, with the You unlock your phone to authenticate yourself.

Some Android users have already seen this action live: Most Banki For example, ng apps allow you to log in using the fingerprint as the password. This authentication standard is also supported by many web browsers, including Chrome, Edge, and Firefox. Just because the support is there does not necessarily mean that you can use this method to log in immediately to all applications. App developers still need to use the FIDO API to support the feature.

Although today's update is good news for people who find passwords tedious, it's only useful to about half of all Android devices worldwide. According to Google's Android distribution dashboard will be running from October 2018, about 50 percent of Android devices with version 6.0 and older.

Source link