Chrome and Firefox Web Authentication API: passwords end

Web Authentication API of WC3 or WebAuthn: Chrome, and Firefox will soon support a new Web Authentication API, which will provide greater protection against phishing attacks and reduce password usage.

The Web Authentication API of WC3 or WebAuthn promises a simpler and safer way to sign up on a page. Web Authentication API

Instead of using the classic username with a password, the user will be able to register a fingerprint, retina or other biometric data stored on his smartphone.

The system will use an encrypted public key and ensure that each service that a user enters has its own key pairs, thus addressing the problem of reusing the same password.

Popular browsers Chrome 67 and Firefox 60 will have the WebAuthn API enabled by default when their fixed versions are released sometime in May.

With this API, one could visit a service page from his computer, tap the signup button, and then receive a notification on his smartphone asking him to sign up.

The person concerned should enter the authorization mode, which could be a PIN or a fingerprint that he will use in the future to log in to his account.

As he mentioned ο Nick Steele της Duo Security, το WebAuthn βασίζεται στο παλαιότερο πρότυπο της FIDO Alliance, το οποίο ονομάζεται UAF ή Authentication Factor, but has many technical advantages.

So we expect to see the new one in Chrome and Firefox as we mentioned above, but also in Microsoft's Edge which tries to compete with the two big browsers.

Let us mention that although the program Apple's Safari does not currently support WebAuthn, the Web Authentication Working Group has many developers of the company.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.082 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).