Skip to main content
  1. Home
  2. Computing
  3. Web
  4. Legacy Archives

Forget that password, Google wants to replace it with USB keys and ‘smart rings’

Add as a preferred source on Google
Image used with permission by copyright holder

A quick glance through last year’s headlines is enough to tell you that typed-in passwords are not the stalwart security plan that they were in the early days of computing. Today, it’s too easy and commonplace for a popular site to be hacked and your personal information to become vulnerable. And gauging by the 2012 stats from SplashData, far too many people leave themselves open to attacks by choosing weak passwords

But what other options do we have? According to Wired, Google is looking for new choices beyond the current standard of passwords and cookies, and is researching using a physical key to lock and unlock your online things. One of the experiments by the search company includes a YubiKey cryptographic card that you simply slide into a USB port to log into Google. 

Recommended Videos

Google’s Vice President of Security Eric Grosse and Engineer Mayank Upadhyay wrote an article that’s due to appear in an upcoming issue of IEEE Security & Privacy Magazine about Google’s efforts to revitalize our password systems. They said the ideal system of protection would involve authenticating a single device, such as a YubiKey or a smartphone, that would be configured to grant you access to any of your online services. “We’d like your smartphone or smartcard-embedded finger ring to authorize a new computer via a tap on the computer, even in situations in which your phone might be without cellular connectivity,” they wrote.

It’s one of those “we’re living in the future” ideas, but it isn’t without some serious hurdles. There would have to be an airtight backup plan in case the key got lost or stolen. And most importantly, other websites and online services would have to agree to support the system. Google’s browser has needed some tweaking to work with the key authentication, so several big players would need to jump on the bandwagon for the idea to really get off the ground. 

In the meantime, Google is working on some improvements to its existing two-step authentication process. In the current system, when you – or someone pretending to be you – signs in from an unfamiliar computer, a security code gets sent to your mobile phone that you need to enter in order to complete the login. This two-step approach is an improvement from just using a user name and password, but it still doesn’t protect against phishing. So Google has an addition in development from the key-based idea that would be independent of its own services. Removing the Google affiliation for the key system would get rid of the phishing concern as well as the need for support from other sites. It’s definitely a step in a safer direction. 

(Image via jakeliefer)

Anna Washenko
Former Contributor
Anna is a professional writer living in Chicago. She covers everything from social media to digital entertainment, from tech…
You can now check if a Google ad was made using AI
Google will auto-label its own AI ads, but third-party AI ads still rely on advertisers to come clean.
google-ads-ai-label

Ever looked at an ad and wondered if a real person made it or if it was AI generated in seconds? Google is now giving you a way to find out.

The company just announced a new AI transparency label that tells you whether an ad was created or edited using generative AI tools. The label lives inside Google's My Ad Center, and it is rolling out across Google Search, YouTube, and Discover globally.

Read more
Outlook will soon warn you before you answer an outdated email
Microsoft is bringing reply alerts, rule-based templates, and improved categories to Outlook
Computer, Electronics, Laptop

Microsoft has recently been cleaning up some longstanding Windows 11 pain points, including parts of the Start menu and Search. According to a new report from Windows Latest, the company is also preparing several useful changes for the new Outlook app on Windows 10 and Windows 11, which became generally available in 2024.

Microsoft is adding a warning for users who start replying to an older email after a newer response has arrived in the same conversation. The alert is meant to stop people from replying without seeing the latest information in the thread.

Read more
Google just changed how it grades the AI models you use for Android coding
Android Bench has a new testing framework and eight new models, so the rankings you remember are now out of date.
Android Bench featured.

Google just changed how it measures which AI models are best at writing Android app code, and the update has shuffled the rankings developers use to pick their tools. The company's Android Bench leaderboard, which launched in March, now runs on a new testing system called Harbor. Google says this replaces the older, more generic testing tool it used before, and gives a better read on how models perform on real Android tasks, like updating old code to Jetpack Compose or handling wearable device networking.

New models shake up the top of the list

Read more