Skip to main content

Big tech firms are teaming up to banish passwords for good

For a lot of us, password security is the ultimate case of procrastination: We know we need to use stronger, unique passwords, yet all too often we end up booting the problem as a job for another day. Instead of trying to convince us for the 1,000th time that “123456” is not a safe password, Apple, Google and Microsoft have decided to try something different.

Today, the three tech giants have announced plans to work on a common sign-in standard created by the FIDO Alliance and World Wide Web Consortium. If all goes according to plan, the new system could do away with passwords entirely, allowing you to sign in to apps and websites in a more convenient way.

Silhouette of male hand typing on laptop keyboard at night.
Andrew Brookes/Getty Images

In a joint press release, the companies explained that they are working to “offer an end-to-end passwordless option. Users will sign in through the same action that they take multiple times each day to unlock their devices, such as a simple verification of their fingerprint or face, or a device PIN.”

Recommended Videos

That includes fingerprint recognition, tools like Apple’s Face ID, or a device PIN. Biometric authentication in particular is a much safer way of securing accounts than using a password, with Apple estimating that Face ID only has a one-in-a-million chance of being fooled. That’s several orders of magnitude more secure than using “password123” to log in.

Please enable Javascript to view this content

The tech companies highlight another benefit of the new system: Convenience. The FIDO standard lets users find their login credentials on their devices (including new ones) without needing to re-enroll each account. Along with that, you will be able to sign in on one device by using another nearby device — for example, you could use an iPhone to log into an account on your Windows PC — regardless of which operating system each device uses.

Say goodbye to passwords

The apple-face-id-feature.
Apple

Logging in to your accounts with the FIDO system could avoid the pitfalls of weak and reused passwords. If bad actors can guess their way past your account security — and then use those login credentials to gain access to your other accounts that share the same passwords — it can lead to you losing private data or having your identity stolen.

In a statement to Digital Trends, Microsoft underlined that point by saying, “attacks per second on passwords have nearly doubled since this time last year. For every second that goes by, there are 921 attacks on passwords,” making for a total of 79.5 million attacks per day.

And while it can be good to lock up your logins with one of the best password managers, even that’s not foolproof if you use a poor master password or reuse login details frequently.

Other methods designed to mitigate these threats, such as two-factor authentication, can be hijacked. Hackers have taken to so-called ‘SIM swap’ attacks to gain access to recovery passcodes sent to users via SMS messages, meaning even methods designed to be safe can be compromised.

In addition to the three big tech firms, the press release states, “Hundreds of technology companies and service providers from around the world” have worked on the standard, which could lead to it getting broad adoption in the future. While there is no solid launch date yet, it is expected to be rolled out on Apple, Google, and Microsoft services over the course of the coming year.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
Qualcomm and Samsung are teaming up to fight Apple’s Vision Pro
Snapdragon XR2+ Gen 2 is designed for spatial computing.

The Snapdragon XR2+ Gen 2 is designed for spatial computing. Qualcomm

Qualcomm just launched the Snapdragon XR2+ Gen 2, a new spatial computing processor that will power Samsung's XR headset that will compete with Apple's Vision Pro. The key features are support for super-sharp displays, multi-camera tracking, and a boost in performance to meet the challenging hardware demands of an immersive workspace.

Read more
Hackers are using this incredibly sneaky trick to hide malware
A hacker typing on an Apple MacBook laptop, which shows code on its screen.

One of the most important things you can do to protect your online security is install one of the best password managers, but a recent cyberattack proves that you have to be careful even when doing that. Thanks to some sneaky malware hidden in Google Ads, you could end up with viruses riddling your PC.

The issue affects popular password manager KeePass -- or rather, it attempts to impersonate KeePass by using misleading Google Ads. First spotted by Malwarebytes, the nefarious link appears at the top of search results, meaning you’ll likely see it before the legitimate websites that follow beneath it.

Read more
This critical exploit could let hackers bypass your Mac’s defenses
A hacker typing on an Apple MacBook laptop while holding a phone. Both devices show code on their screens.

Microsoft has discovered a critical exploit in macOS that could grant hackers easy access to your Mac’s most important data. Dubbed ‘Migraine,’ it shows why it’s vital to update your Mac as soon as possible.

Migraine is so damaging because it can bypass Apple’s System Integrity Protection, or SIP for short. SIP is enabled by default on modern Macs and works by sandboxing sensitive parts of the computer from outside meddling. Only processes that are signed by Apple (or those with special privileges, like Apple installers) are allowed to alter something guarded by SIP.

Read more