Will the torment of the password finally come to an end?

there was 2019 we first wrote about FIDOAn alliance with the goal of getting rid of passwords.

Are we finally close to a solution?

Now three years later and we still put here the password processors, randomly generated SMS codes and codes used with your personal password – It should never end?

Apple joined the alliance in 2020But then we didn’t hear much.

Built in Chrome, Android and Microsoft services

But the now big three companies, Google, Apple and Microsoft, say they are committed to expanding the use of the FIDO standard in order to achieve a global, password-free everyday life.

Google is also involved and says it will build FIDO in Chrome, ChromeOS and Android, while Microsoft will build support into its apps and services.

To summarize FIDO’s solution:

Extended, standards-based features will give websites and apps the ability to offer an end-to-end password-free alternative.

Users will sign in the same way they do multiple times each day to unlock their device, such as with a simple fingerprint or face verification, or a device PIN.

This new approach protects against phishing, and logins will be radically more secure compared to old, multifactorial passwords and technologies such as OTPs sent via SMS.”

It uses the phone’s biometrics and it is passwordless

The new approach is that users will soon be able to access FIDO login details on all devices without having to re-register for each account. The industry consortium also states that users can use the FIDO login on their mobile device to log into an app or website on a nearby device, regardless of the operating system or browser.

Username and password authentication will also work regardless of the operating system and browser and login to FIDO will be offered with a ‘single login’ option with no password or recovery method required.

Authentication is done using biometrics already built into the unit. Apple’s iCloud Keychain also uses FaceID to sign in, but this method of doing so only fills in traditional passwords already stored on the device.