Passwords are a real pain – and Google knows it. In a blog post published this week, Google’s Director of User Security Mark Risher, promised to work toward solutions that will completely remove passwords in the login process. Not only will it be painful to log in, but it should also make your online accounts more secure. After all, people often reuse passwords across multiple accounts, so only one of these websites needs to be hacked to unlock dozens of others, or use easy-to-guess passwords. , like the long -popular “123456” (no, really).
“You may not realize it, but passwords are the single biggest threat to your online security – they’re easy to steal, hard to remember, and managing them is tedious,” Mark Risher wrote, “By 2020, looking “How strong is my password” increased by 300 %.Unfortunately, even the strongest passwords can be compromised and used by an attacker – that’s why we’ve invested in security controls that prevent you from using weak or compromised passwords.
“At Google, keeping you safe online is our top priority, so we’re constantly investing in new tools and features to keep your personal information safe, including your passwords. We make managing it easier and more secure. of the password, and we provide a sneak peek at how our constant innovation creates a future where someday you won’t need a password. “
While a future without a password for your Gmail, YouTube, and Google Docs accounts may still be a long way off, Google has announced a change that will start early.
Google now offers two-step verification as an optional addition to protect your account. For those who don’t know, two-step verification means that a username-password alone isn’t enough to gain access to an account. To login successfully, you will also need to enter a randomly generated code, which is sent to a place that only the account owner has access to-such as a separate email address, a mobile phone number, or a smartphone app like Google Authenticator.
So, if hackers should get your username and password, they can’t login without accessing your mobile phone number, or personal email address.
While two-step verification is currently voluntary for all Google account owners, that is set to change. In the near future, Google plans to make two-step verification mandatory for all accounts. Before that happens, Google said it plans to improve some of its multi -factor authentication methods.
To make it easier to get your hands on the uniquely generated code, Google plans to build security keys on Android devices and through the Google Smart Lock app for iOS. So, you won’t need to have a mobile signal … you’ll be able to use your phone itself as verification that you’re actually trying to login to your account.
And while the passwords live on at the time they are borrowed, Google recognizes that they are likely to be close.
As such, it powers the Password Manager tool, which is built into Google Chrome, Android, and coming soon to iOS. This makes it easy to have a uniquely generated password for each online account that you don’t have to remember any of them. All you have to do is login to Password Manager, using a facial or fingerprint scan, and then the Google app will populate everything for you.
Google recently added a Password Import feature, which lets you upload up to 1,000 passwords at a time from various third-party websites or apps for free.
Risher concludes, “Features like Password Import, Password Manager and Security Checkup – combined with authentication products like Google Sign in – reduce the spread of weak credentials. All are examples of how we’re working to make your online experience safer and easier – not just on Google, but across the web.One day, we hope that stolen passwords will be a thing of the past, as passwords will be a thing of the past, but until then Google will continue to keep you safe and your passwords. “
Disclaimer: The opinions expressed within this article are the personal opinions of the author. The facts and opinions appearing in the article do not reflect the views of knews.uk and knews.uk does not assume any responsibility or liability for the same.