In a joint effort to make internet browsing safer for everyone, Google, Microsoft and Apple have announced that support standards developed by the FIDO Alliance and the World Wide Consortium (W3C) with the goal of providing consistent, easy-to-manage authentication that does not involve remembering passwords.
As announced yesterday by the FIDO Alliance, the three industry giants will implement these standards so that users can access online applications and services using passwordless authentication methods, such as PIN code, fingerprints or face scans.
The Alliance FIDO (Fast Identity Online) was created in July 2012 to address issues that users need to create and remember multiple usernames and passwords. For this, they have developed technologies such as USB hardware keys or the security specification web authenticationwith W3Cwhich was updated last March.
“Easier and stronger authentication is not only the motto of the FIDO Alliance, it has also been a guiding principle of our specifications and implementation guidelines,” said Andrew Shikiar, Managing Director and Director of FIDO Alliance Marketing.
“This new capability ushers in a new wave of low-friction FIDO deployments coupled with the continued and growing use of security keys, giving service providers a full range of options to deploy modern, phishing-resistant authentication.” “.
This move was proposed as a solution to persistent security issues with the use of typed passwords. In fact, Microsoft thinks that every second there are 579 password attacks, which represents a total of 18,000 million attacks per year, most of which end in success. On another side, spy clouda cybersecurity vendor, published in a report in early March that the 64% of users repeat the same password and, in turn,l 70% of compromised passwords are still used.
Thanks to this union between companies, Google, Apple and Microsoft will implement these standards providing the ability to automatically access the credentials of fido loginknown as “access keys” without the need to register each account. This should make passwordless logins easier, regardless of operating system and platform.
However, it is believed that these new standards imposed by the W3C and FIDO will take time to set up. For example, according to Alex Simons, vice president of identity program management at Microsoft, “The full shift to a world without passwords will begin when consumers make it a natural part of their lives.”.
Craig Lurey, co-founder and director of cybersecurity firm Keeper Security, supports this claim by stating that “we will continue to use passwords for at least another decade“, adding that, despite all his work, FIDO does not meet the need to encrypt data of the user in environments where knowledge and trust are nil.
Via, the register