Google is making strides in online security with cross-passwords for more secure logins
Good news for all password haters: Google has taken a big step to make them an afterthought by adding “passwords” as a simpler and more secure way to log into its services.
Here’s what you need to know:
WHAT ARE PASSION KEYS?
Passwords provide a more secure alternative to passwords and SMS verification codes. Users never see them directly; instead, a web service like Gmail uses them to communicate directly with a trusted device like a phone or computer to sign in.
All you need to do is verify your identity on the device using a PIN unlock code, biometrics such as your fingerprint or face scan, or a more sophisticated physical security key.
Google has designed its passwords to work with many different devices, so you can use them on iPhone, Mac and Windows computers, as well as Google’s own Android phones.
WHY ARE PIECES NEEDED?
Thanks to smart hackers and human error, passwords are too easy to steal or crack. And making them more complicated only opens the door for users to beat themselves up.
First, many people choose passwords they can remember—and easy-to-remember passwords are also easy to hack. Analysis of hacked password caches over the years found that the most common password in use was “password123”. A more recent study by password manager NordPass found that it is now just a “password”. This one won’t let anyone down.
Passwords are also often compromised in data security breaches. Stronger passwords are more secure, but only if you choose unique, complex, and obscure ones. And once you’ve chosen “erVex411$%” as your password, good luck remembering it.
In short, passwords pit security against ease of use. Software-based password managers that can generate and store complex passwords for you are valuable tools that can improve security. But even password holders have a master password that you need to protect, and that will throw you back into the sock.
In addition to avoiding all these problems, passwords have one additional advantage over passwords. They apply to specific websites, so scam sites can’t steal a password from a dating site and use it for your bank account.
HOW DO I START USING PIECES?
The first step is to enable them with your Google account. Open a browser on any trusted phone or computer and sign in to your Google account. Then go to g.co/passkeys and click on Start using passwords. Voila! The password feature is now activated for that account.
If you’re using an Apple device, you’ll first be prompted to set up the Keychain app if you’re not already using it. it securely stores passwords and now passwords too.
The next step is to create the actual passwords that connect your trusted device. If you’re using an Android phone that’s already signed in to your Google account, you’re done. Android phones are automatically ready to use passwords, although the feature still needs to be enabled first.
On the same Google account page mentioned above, look for the Create password button. Pressing it will open a window and you can create a password for either the current device or another device. There is no wrong choice; the system simply informs you if the password already exists.
If you’re using a computer that can’t generate a password, it will open a QR code that you can scan with standard iPhone and Android device cameras. You may need to move the phone closer until you see the message “Set password” on the screen. Tap it and you’re on your way.
AND THEN WHAT?
From then on, logging into Google requires only entering your email address. If you have set the passwords correctly, you will receive a message on your phone or other device asking you to enter your fingerprint, face or PIN code.
Of course, your password is still there. But if passwords go, chances are good you won’t need it very much. You may even decide to delete it from your account one day.
Read all the Latest Tech News here.