A password-less future could be upon us before we know it.
In a groundbreaking move, Google has announced that it will be making passkeys the default login method for its personal accounts, further accelerating the shift away from traditional passwords.
This change is set to streamline the login experience for billions of users, emphasizing the company’s commitment to enhanced security and user convenience.
Passkeys, which can include biometric methods like facial recognition, fingerprint scans, or PINs, are set to become the primary means of authentication for personal accounts.
Alongside this transition, Google will also activate the “Skip password when possible” option by default in users’ account settings, allowing them to bypass password entry whenever feasible.
This shift toward passkeys reflects the latest advancement in biometric authentication technology.
According to Google, passkeys offer a 40% increase in login speed compared to traditional passwords.
They rely on a robust cryptographic foundation, enhancing security while reducing the burden of memorizing complex passwords filled with numbers and special characters. Additionally, passkeys are designed to be highly resistant to phishing attacks.
Google’s decision has been met with enthusiasm from various experts in the field. Steve Won, Chief Product Officer at 1Password, a renowned password manager software company, hailed this move as a significant step toward a truly password-less future, emphasizing that it eliminates a common security breach vector – stolen credentials.
Tony Goulding, a cybersecurity evangelist at Delinea, a privileged access management solutions provider, sees Google’s decision as the most promising initiative to date, building upon the foundation laid by FIDO2.
He believes it brings us closer to achieving the long-sought-after goal of a password-less future.
Ron Arden, CTO and COO of Fasoo, an enterprise data protection solutions provider, highlights the potential for Google’s decision to drive market adoption of password-less authentication, especially among publicly accessible applications.
The transition to password-less solutions is gaining momentum in both the consumer and enterprise sectors.
Ricardo Amper, founder and CEO of Incode Technologies, an international identity verification and biometric authentication company, suggests that Google’s policy change reflects the growing demand for seamless and highly secure authentication methods, empowering individuals to take greater control of their data in response to evolving cyber threats.