The password has become the black sheep of the security world, ostracized for its inability to actually protect users\u2019 accounts and the laughable ease with which attackers can crack or circumvent them. Now, Google, the most powerful force on the Web, is experimenting with a method that would allow users to do away with passwords for the most part in favor of a hardware-based authentication method.<\/p>\n
Google researchers have been looking at ways to improve authentication methods for some time now and have made some inroads on the problem. The most successful example of this is the company\u2019s deployment of two-factor authentication for Gmail<\/a> users. This option requires that users enter a one-time code sent via SMS to their mobile devices in addition to their main password in order to access their Gmail accounts. The method erects another barrier for attackers to get over in order to hack a Gmail account, a nice improvement.<\/p>\n But the two-factor authentication system still relies on a password. Google is working on a way to make the password much less important, if not entirely obsolete. The company has developed a method that enables people to use a hardware token to give them instant authenticated access to their Google accounts, including Gmail, Google Apps and other services, Wired<\/a> reports. The system relies on a tiny smartcard that generates one-time passwords for authentication.<\/p>\n Password security<\/a> has been a problem for decades and many other companies have attempted to solve it. However, no one has developed a successful replacement for passwords. But, then again, none of the companies trying to solve the problem has had the reach and influence Google has, so the potential for this idea to reach a broad audience is quite high. But that doesn\u2019t mean that passwords are going to disappear any time soon.<\/p>\n \u201cIt is not yet Google\u2019s stated intention to replace passwords with some other form of authentication; some of the company\u2019s employees simply wanted to see how secure different authentication systems could be and USB tokens were among those they tried out. It\u2019s more like a bit of research, though it\u2019s not really clear how applicable it is for Google\u2019s own services. Tokens like these are widely used on corporate networks, but using them to safeguard a free online mail account is excessive. It\u2019s not the most convenient solution for users because it restricts their ability to check mail on any device, say at a friend\u2019s or an internet caf\u00e9. And besides, there are other perfectly good methods of increasing security such as two-factor authentication with text messages, which is already used by Gmail,\u201d said Alex Gostev<\/a>, chief malware expert at Kaspersky Lab.<\/p>\n Widespread adoption of a method like the one Google is proposing would take quite a while, but it\u2019s encouraging to see researchers trying to find solutions to one of the thornier security problems users have.<\/p>\n","protected":false},"excerpt":{"rendered":" The password has become the black sheep of the security world, ostracized for its inability to actually protect users\u2019 accounts and the laughable ease with which attackers can crack or<\/p>\n","protected":false},"author":32,"featured_media":996,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5],"tags":[175,22,270],"class_list":{"0":"post-995","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"tag-gmail","9":"tag-google","10":"tag-password-security"},"hreflang":[{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/google-plan-could-help-make-passwords-obsolete\/995\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/me-en.kaspersky.com\/blog\/tag\/gmail\/","name":"gmail"},"_links":{"self":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/995","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=995"}],"version-history":[{"count":1,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/995\/revisions"}],"predecessor-version":[{"id":15054,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/995\/revisions\/15054"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/996"}],"wp:attachment":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=995"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=995"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=995"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}