Google Passkey – As the security, hacking and cyber bullying concerns are getting bigger and bigger, companies are investing more and more in making their ecosystem secure. Taken this into account, Google will soon unveil a new security feature called “passkey” that is aimed at providing a more secure and user-friendly alternative to traditional passwords and two-step verification (2SV). This feature would release around this year (2023) World Password Day.
Passkey works by generating a unique cryptographic key for each website or app that a user logs into, instead of relying on a static password or code that can be easily stolen or guessed.
Hassle of managing passwords is a daunting task. Whether it is for students, job professionals or entrepreneur, to keep track of your passwords is not an easy job. According to Google, now with this new feature “Passkey” it will now become easier for users to stay secure online by eliminating the need for them to remember multiple passwords or enter 2SV codes each time they log in. Instead, users will be able to sign in with a single tap or click, using their device’s biometric authentication (such as a fingerprint or facial recognition) or a PIN code. Isn’t it a great relief?
Google has acknowledged the difficulty that many users and professionals face, when it comes to creating and remembering strong passwords. Many combinations, different combinations, hell lot of things! In current digital age, with the rise of phishing attacks, trojans, virus, worms, scam emails and lot like these – Even using Multi-Factor Authentication (MFA) such as 2SV can be insufficient in providing full protection against such attacks. These methods can also add additional friction to the login process and make process complex & delayed. Furthermore, MFA may still be targeted by attackers using methods such as SIM swapping to bypass SMS verification.
Currently, Passkey is still in the experimental stage and is not yet available to the public. However, Google has released a technical paper that explains how the feature works and invites feedback from developers and security experts.
Passkey is just one of the many efforts that Google is making to improve the security and privacy of its users. It would help in building more secure ecosystem. Earlier this year, the company announced that it will be phasing out support for third-party cookies in its Chrome browser, in order to prevent online tracking and improve user privacy.
While passwords, 2SV, and other signing-in methods will still work across Google accounts as it is, passkeys are set to revolutionize the way we think about authentication. In Google’s own words, “Passkeys are the beginning of the end for passwords.“
Overall, Google’s push for more secure and user-friendly authentication methods is a welcome development for anyone who has ever struggled with remembering multiple passwords or navigating clunky 2SV processes. With passkey and other innovations like it, staying secure online may soon be as simple as a single tap or click.
How passkey works?
So to make life of users easier, Google is making it convenient for users to protect their accounts with the introduction of passkeys. Once you have added the passkey option to your Google accounts, you will be prompted to use it when you sign in or perform any sensitive actions on supported devices.
Administrators of Google Workspace accounts – whether it is at personal level or organizational level, would soon have this feature of enabling passkeys for their end-users during sign in or sign up.
Passkeys will be stored locally on users computers, laptops, mobile devices, smartphones and tablets. These will be protected by screen lock biometrics or a PIN code. Google assures users that their biometric data will not be shared with any company or any third parties, ensuring everyone greater privacy and security.
Passkeys are flexible and can be created for multiple devices. Some platforms even allow them to be backed up and synced across different devices. If a device with a passkey is lost, users can revoke the passkey in their account settings or remotely wipe it on some devices.
In conclusion, we believe that passkeys offer users a more secure and convenient way to protect their Google accounts. With the ability to create passkeys for multiple devices and revoke them if necessary, users can have greater peace of mind knowing that their accounts are well-protected.