Apple, Google and Microsoft agree to support ‘passwordless’ sign-ins

The technology giants have said they will back a new sign-in standard that could replace written passwords.

Martyn Landi
Thursday 05 May 2022 11:18 EDT
(Joe Giddens/PA)
(Joe Giddens/PA) (PA Wire)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Apple, Google and Microsoft have announced a joint effort to support a new type of online sign-in which could replace passwords and is designed to make the web more “secure and usable for all”.

The technology giants have agreed to support a new common passwordless sign-in standard which has been created by industry body the Fido Alliance and the World Wide Web Consortium.

The new standard, once in place, would allow people to sign in to websites and apps in the same way that they unlock their devices; such as by using a fingerprint or face scan to verify themselves, or by entering a device PIN.

The system will enable people to access and use their new passwordless sign-in credentials – known as a passkey – across different devices without having to sign in to every account again on each device.

The tech giants said the new system would also allow people to use a fingerprint or facial scan authentication on their smartphone as a way of signing in on another device nearby, regardless of which operating system or browser they were running.

This would reduce the need for people to remember a wide range of username and password combinations to log in to different services, they said, which often led to passwords being reused across multiple accounts – something experts said was one of the biggest security risks in the digital world.

Apple, Google and Microsoft said they hoped to start making these capabilities available across their platforms over the coming year.

Ubiquity and usability are critical to seeing multi-factor authentication adopted at scale, and we applaud Apple, Google and Microsoft for helping make this objective a reality by committing to support this user-friendly innovation in their platforms and products

Andrew Shikiar, Fido Alliance

“‘Simpler, stronger authentication’ is not just Fido Alliance’s tagline — it also has been a guiding principle for our specifications and deployment guidelines,” Fido Alliance executive director Andrew Shikiar said.

“Ubiquity and usability are critical to seeing multi-factor authentication adopted at scale, and we applaud Apple, Google and Microsoft for helping make this objective a reality by committing to support this user friendly innovation in their platforms and products.

“This new capability stands to usher in a new wave of low-friction Fido implementations alongside the ongoing and growing utilisation of security keys — giving service providers a full range of options for deploying modern, phishing-resistant authentication.”

The announcement comes on World Password Day, and as cybersecurity experts called for the public and businesses to “drop passwords altogether” in order to better protect personal data.

Grahame Williams, identity and access management director at defence firm Thales, said passwords were “becoming increasingly insecure” and “easily hacked”, adding that the industry needed to move on to newer technologies in order to boost security.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in