Skip to main content
  1. Home
  2. Mobile
  3. News

Say goodbye to passwords on Android: Trust API could launch by the end of the year

By

chase bank eatm fraud news smartphone banking app password 123rf 26463673 ml
tashka2000 / 123RF Stock Photo
Typing passwords might be the biggest nuisance on mobile devices, and Google wants to kill them for good. Last week at Google I/O 2016, Daniel Kaufman, the head of Google’s Advanced Technology and Projects research unit (ATAP) updated us on Project Abacus, Google’s software-only plan to eliminate the need to enter passwords.

Announced at last year’s Google I/O, Project Abacus works by accumulating data about you such as the particular times and locations you might use an app, as well as your voice and face to derive a Trust Score. This Trust Score is then used to determine if it’s indeed you. If so, you won’t have to enter a password, and if not, well, you get the gist. Financial apps would require a very high Trust Score, while games and such wouldn’t be as stringent.

Recommended Videos

Engineers in Google’s search and machine intelligence teams created the Trust API, which will be tested at select banks starting in June. If all goes well, it’ll get released to all Android developers by the end of the year. As many as 33 universities across 28 states already ran trials last year.

Please enable Javascript to view this content

Google has dabbled in this area with Smart Lock, which was introduced in Android Lollipop. It allows you to automatically unlock your Android phone or tablet if you’re connected to a trusted Wi-Fi network or Bluetooth device. Another method is two-factor authentication, which is the practice of generating a unique PIN through an email or SMS message. A very secure method, but it’s too time consuming for the average user.

Related

The problem with passwords is that people don’t remember them, so they tend to use simplified passwords. To make matters worse, most people will use the same password for multiple accounts, making them more vulnerable to attacks. Some have resorted to using password manager apps that automatically type passwords for you, but they can be a pain to set up. Google’s plan is to make things simpler, but even more secure than today’s standards.

“We have a phone, and these phones have all these sensors in them. Why couldn’t it just know who I was, so I don’t need a password? It should just be able to work,” said Kaufman at a developer session last Friday afternoon at Google I/O.

By bringing the Trust API to the app level, it will further protect app data from a stranger that who able to successfully unlock your device. Each app would determine that the user wasn’t you and would require a password to gain access.

From what we can tell, it doesn’t appear that Google will need to release a new version of Android for the Trust API to work, since it’s mostly at the app level. This means that it should work on older versions of Android as well, but we won’t know for sure until we get closer to its release later this year.

Editors’ Recommendations

Topics
Robert Nazarian
Robert Nazarian
Former Digital Trends Contributor
Robert Nazarian became a technology enthusiast when his parents bought him a Radio Shack TRS-80 Color. Now his biggest…
The 1Password Android app just got a huge upgrade
The 1Password Android app, side-by-side, showing the light and dark mode.

The 1Password password manager app for Android has just gotten a huge new update, which unlocks the use of passkeys through its app. Held by many as the future of secure authentication, passkeys are the next evolution of the password, and from today, you'll be able to use 1Password to create, manage, and unlock your accounts that use passkey authentication.

1Password is one of the world's most popular password managers, with over 700,000 passwords saved. But it clearly sees that the future is elsewhere, as it has been leading the charge on taking passkeys into the mainstream.

Read more
Google is launching a powerful new AI app for your Android phone
Google Gemini app on Android.

Remember Bard, Google’s answer to ChatGPT? Well, it is now officially called Gemini. Also, all those fancy AI features that previously went by the name Duet AI have been folded under the Gemini branding. In case you haven’t been following up all the AI development flood, the name is derived from the multi-modal large language model of the same name.

To go with the renaming efforts, Google has launched a standalone Gemini app on Android. Moreover, the Gemini experience is also being made available to iPhone users within the Google app on iOS. But wait, there’s more.

Read more
Google is killing your passwords, and security experts are (mostly) happy
Logging into a Google account with passkeys on an iPhone.

Google is inching closer to making passwords obsolete. The solution is called "Passkeys," a unique form of password that is stored locally on your phone or PC, just the way a physical security key works. The passkeys are protected behind a layer of authentication, which can be your fingerprint or face scan — or just an on-screen pattern or PIN.

Passkeys are faster, linked across platforms, and save you the hassle of remembering passwords for websites or services that you have subscribed to. There is a smaller scope for human error, and the risks of 2-factor authentication code interception are also reduced.

Read more