Your laptop, a browsed website and a tap, possibly with your ring, is all that it will take for you to login to Gmail. And possibly to other websites, if the prototype currently being developed by Google comes comes to be a reality.
Google' security team is currently working on a prototype that will enable web users to be able to shun their passwords and instead use a physical key to login to websites. The research details are said to be publishing some time soon in the IEEE security and Privacy Magazine. The paper will contain details; provided by Google security' VP Eric Grosse and Engineer Mayank Upadhyay; on how web users will be able to forget passwords and use their cell phones or a USB and even their jewellery items to be able to login to their Google accounts and even other websites, once they start honoring the protocol and technology.
According to Grosse and Upadhyay:
Along with many in the industry, we feel passwords and simple bearer tokens such as cookies are no longer sufficient to keep users safe...
So how does this work? The guys at Google had to modify the browser to support the new unnamed protocol. The good news is that there won't be any software or add-ons to install in the browser. A Yubico type card; that could slid in your USB reader; will be able to login the user to their accounts. For a start though, you will need to register the physical key after you login to the site. But that's only once at the start. From then on, you will not be needing to remember any complex passwords and the browsers will be not needing any more cookies for the purpose too.
The websites being used will however need to support this. Google is aware of the other similar options that were tried in the near or distant past.
Others have tried similar approaches but achieved little success in the consumer world. Although we recognize that our initiative will likewise remain speculative until we’ve proven large scale acceptance, we’re eager to test it with other websites.
They further clarifies:
We’d like your smartphone or smartcard-embedded finger ring to authorize a new computer via a tap on the computer, even in situations in which your phone might be without cellular connectivity.
We know you are looking forward to it, so are we!!
Google' security team is currently working on a prototype that will enable web users to be able to shun their passwords and instead use a physical key to login to websites. The research details are said to be publishing some time soon in the IEEE security and Privacy Magazine. The paper will contain details; provided by Google security' VP Eric Grosse and Engineer Mayank Upadhyay; on how web users will be able to forget passwords and use their cell phones or a USB and even their jewellery items to be able to login to their Google accounts and even other websites, once they start honoring the protocol and technology.
Along with many in the industry, we feel passwords and simple bearer tokens such as cookies are no longer sufficient to keep users safe...
So how does this work? The guys at Google had to modify the browser to support the new unnamed protocol. The good news is that there won't be any software or add-ons to install in the browser. A Yubico type card; that could slid in your USB reader; will be able to login the user to their accounts. For a start though, you will need to register the physical key after you login to the site. But that's only once at the start. From then on, you will not be needing to remember any complex passwords and the browsers will be not needing any more cookies for the purpose too.
The websites being used will however need to support this. Google is aware of the other similar options that were tried in the near or distant past.
Others have tried similar approaches but achieved little success in the consumer world. Although we recognize that our initiative will likewise remain speculative until we’ve proven large scale acceptance, we’re eager to test it with other websites.
They further clarifies:
We’d like your smartphone or smartcard-embedded finger ring to authorize a new computer via a tap on the computer, even in situations in which your phone might be without cellular connectivity.
We know you are looking forward to it, so are we!!
0 comments:
Post a Comment