The majority of websites will need to continue to store passwords because decades will pass before every user has the hardware and software they need to use passwordless authentication.Įven in the Windows-advertised world of passwordless setup passwords still matter, particularly as a backup method. Few websites are currently compatible with passwordless authentication. Unfortunately, a passwordless reality isn’t here quite yetĪ passwordless future sounds fantastic, but passwords will remain a backup authentication method until passwordless technologies mature. Passwordless technology doesn’t support authentication on devices the user doesn’t own or control. The user would use a cloud account, such as iCloud, to store their passwordless credentials for use across devices they own. Passwordless technology would work on all of a user’s devices. Plus, end-users could save time and avoid the headaches of managing and remembering passwords and they wouldn’t have to change their passwords ever again. Phishing and brute force attacks using passwords would end. Criminals couldn’t breach password databases because they would no longer exist. Criminal hackers would have to have the user’s device and biometrics or PIN to log in to their account. In a passwordless age, users could enjoy the freedom of knowing that no one can steal or guess a password and log in to their accounts. And depending on the site’s security policies, they may not have to use MFA. There is nothing to remember unless users choose the PIN option, which can typically be anything they like. Then they can prove their identity using a face or fingerprint scan or a simple PIN to log in, just like they do when unlocking their device. Passwordless technology leverages the user’s device as an authentication factor as they surf to a site and select their account.
0 Comments
Leave a Reply. |