Friday, September 20


A few years ago it witnessed the ultimate development of world security technology. Rather than spend much effort thinking and entering each character into the password box, we can now easily unlock the phone or pay the service with just placing the finger on the fingerprint sensor, or placing the phone in front of the feature Face unlock, Iris. Even in the near future, we will witness the advent of the ‘ vascular ‘ security technology

At present, the above security technologies have been increasingly being developed on a more complete, with almost absolute safety. And this is also one of the reasons why many people say that it’s a need to remove a password. That technology has become old, outdated, non-secure and easily stolen. However, the “manual” deletion of the password login method is not easy to do as we thought

Why do people want to ‘ remove a password ‘

In a single exchange with Microsoft’s security team on the goal of “build a world without password ” In May 8/2018, representatives of the shared group:

“None of us like passwords. They are inconvenient, unsafe, and sometimes cause much trouble. In fact, we hate passwords so much that we have to put all our strength into creating a new world without them – a world full of ‘ clean ‘ passwords. “

Passwords are increasingly causing a lot of inconvenience, and we have to be wiser at the risk of using that kind of security. If people used to use passwords as a simple sequence of characters on the same many different websites, then when hackers or someone has obtained them, we all have our data and personal information on the other sites. There is also the risk of theft. Therefore, the only option chosen is to create a password that is highly complex and different for each of the websites visited.

Come here, we have a complex problem that arise: unable to remember the password. For the majority of users, they don’t have a genius brain to be able to memorize in the beginning of all passwords that have complex characters when using multiple different online accounts. Thus, the password management software was born, developed and acted as the management center “key Online” for the user. We can save hundreds, thousands of different passwords into management software, and the only thing we need to remember is a master password to access the software when needed – much safer than using a password for multiple sites Different.

However, even if you already have a bunch of hard passwords and handy manager, the security is really not high. It is possible that some hackers will install keylogger or malware onto the computer system, stealing the password for unauthorized access to the site you are using. Such a situation happened many years ago, so severe that some developers have created a second layer of security, authenticated via phone OTP, mail, or sometimes as code from another device (two-layer authentication on Facebook using the code fetching).

If the use of a password is so complex, is there any other security method better?

What security methods would qualify to replace the password?

Goldberg, director of the Security division of the company 1Password – owns the application of the same name quite well known today – said he has witnessed many plan serial plans are made with the purpose of excluding passwords over the last 20 years , and of course they encountered disastrous failures. However, new projects being grouped at the present time can become feasible in the future, with a higher chance of success as technology levels have progressed beyond the past, especially the robust development of Devices such as smartphones, laptops….

Biometric security can replace passwords. We use Touch or Face ID to sign in to iPhone instead of entering the PIN. And at the same time, Android phones also use the same fingerprint sensor and facial recognition technologies, to unlock their devices.

With Microsoft, you can now create a Windows account without a password, with the login name being the phone number, and ‘ password ‘ will be the character string sent to your phone via SMS messages.

The phone can also be used to replace the password. Google recently allowed the device to use Android as the FIDO2 key. However, you need to authenticate your fingerprint on your phone if you want to log in to sites on your laptop.