In a rare show of unity, Apple, Microsoft, and Google have joined forces to support passwordless logins.
According to the annual data breach report, weak and easily-guessable credentials account for more than 80% of all data breeches. While password managers and multi-factor technologies offer small improvements, Apple, Microsoft and Google are working together to create sign-in technology that is more convenient and secure.
The tech giants announced on Thursday that they are expanding support for a password-free sign-in standard from the FIDO Alliance and the World Wide Web Consortium. You will use the same action that you take multiple times each day to get your phone unlocked, such as with a verification of your fingerprints, face scans, or device PIN.
Users will be able to access their FiDO sign-in credentials across multiple devices without having to re-enroll every account.
While the three companies have supported the passwordless sign-in standard created by the FIDO Alliance, users are still forced to sign into each website or app with each device before they can use the passwordless feature. Passwordless FIDO sign-in standards will be implemented across the three tech giants over the next year. Users will be able to sign in with a passkey on an Apple device if they use a browser that runs on Microsoft Windows.
Signing in requires access to a physical device, so it will be harder for hackers to compromise login details remotely.
Working with the industry to establish new, more secure sign-in methods that offer better protection and eliminate the vulnerabilities of passwords is central to our commitment to building products that offer maximum security and a transparent user experience.
Jen Easterly, director of the U.S. Cybersecurity and Infrastructure Security Agency, praised the new collective commitment, saying it would keep the American people safer online.
Easterly said that they are working to raise the cybersecurity baseline for all Americans. Cyber is a team sport, and we are pleased to continue our collaboration.
The password has survived many attempts to kill it, but this could be the final nail in the coffin.
Cybersecurity 101: How to protect your online security and digital privacy