How good are you at remembering you various passwords? Well, if you’re anything like me, it’s a constant battle to keep on top of which password work where. There is some hope coming as a new standard, called WebAuthn, has won near-final approval from the World Wide Web Consortium, which establishes Web standards.
WebAuthn defines a standard Application Program Interface or API that can be incorporated into browsers and Web infrastructure. It opens the door for new ways for users to authenticate themselves on the Internet that are more secure and convenient than passwords.
The new standard seems to be poised for rapid growth. Google, Microsoft, and Mozilla already have committed to supporting WebAuthn in their browsers. Developers have begun to implement the standard for Windows, Mac, Linux, Chrome OS and Android.
It’s expected that it will take about 12 months it gets full support from the technology industry.
Implementing WebAuthn should not be difficult for organizations. Although there are new concepts involved, but not radically new security thinking. The larger problem will be getting time and attention from large organizations to adopt this for customer authentication.
WebAuthn, which is based on a specification written by the FIDO Alliance, can make the Internet more secure for consumers.
For example, FIDO is resistant to phishing attacks and data breaches, two of the most common threats to consumers and other users of the Internet.
This makes them more convenient because All you have to do is look at a camera, touch a fingerprint sensor, or touch a button on a security key.
Reporting for Computer Insider, I’m Bob Pritchard