R.I.P. Password

R.I.P. Password

If you’re like me, you love a movie with a good plot…one filled with unexpected twists and turns that keeps your attention, and sprinkle in a little bit of emotional baggage, then add a R.I.P. Password murder plot to the mix, and you’ve got the next Oscar-winning movie! Throughout this type of movie, each moment is carefully planned to ensure viewer engagement and interest stays piqued. The same is true in the mobile world, only the plot here revolves around the murder of the password by biometrics. (Weird, scary music can be heard in the background.)

The setting opens up in the 1960’s where people used mainframes housed in an entire room. These time-sharing computers required a user to enter their login name and password, telling the computer who was sitting at the terminal and which files to make available. Back then, stealing someone’s password was a practical joke. There was only one computer where you could use your credentials and not too much personal information was displayed.

Fast forward 50 years, and look what the right password can do: allow you to read emails, order products, hijack cloud-storage accounts, even delete every trace of someone’s digital life! And, all this and more can be done anywhere as long as there’s an internet connection.

Here enters the character, PayPal, who in 2010 decided to consult with their head of security, a fingerprint security entrepreneur and a renowned cryptographer to establish an easier way to log into PayPal. Two years later, the FIDO Alliance was launched, a group trying to wean companies off passwords for good; hence, the murderer takes center stage to kill the password.

According to the members of FIDO, if people log into their computers with fingerprint readers, sites could log them in automatically using the Zero-Knowledge Proof protocol that proves a successful identification has been made without giving away details. Therefore, a single device could authenticate someone to the entire web.

Take the iPhone 5s, for example. You always have a finger with you and in this day, you always have your phone, so logging in isn’t an issue. The combination of finger and phone makes security much harder to break, and it looks like there’s no room for a password credential.

This never-ending story came to a halt on April 11th with the arrival of Samsung’s new Galaxy S5, complete with a fingerprint reader, but this reader is special. It plugs directly into PayPal which connects the user to dozens of different payment systems. Instead of a password, all that’s needed is a fingerprint to carry the user through the entire web.

RIP password.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Maximizing Your Security Budget This Year

    7 Ways You Can Secure a High-Traffic Commercial Security Gate  

    Your commercial security gate is one of your most powerful tools to keep thieves off your property. Without a security gate, your commercial perimeter security plan is all for nothing. Read Now

  • Survey: Only 13 Percent of Research Institutions Are Prepared for AI

    A new survey commissioned by SHI International and Dell Technologies underscores the transformative potential of artificial intelligence (AI) while exposing significant gaps in preparedness at many research institutions. Read Now

  • Survey: 70 Percent of Organizations Have Established Dedicated SaaS Security Teams

    Seventy percent of organizations have prioritized investment in SaaS security, establishing dedicated SaaS security teams, despite economic uncertainty and workforce reductions. This was a key finding in the fourth Annual SaaS Security Survey Report: 2025 CISO Plans and Priorities released today by the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment. Read Now

  • Mobile Applications Are Empowering Security Personnel

    From real-time surveillance and access control management to remote monitoring and communications, a new generation of mobile applications is empowering security personnel to protect people and places. Mobile applications for physical security systems are emerging as indispensable tools to enhance safety. They also offer many features that are reshaping how modern security professionals approach their work. Read Now

Featured Cybersecurity

Webinars

New Products

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3