Skip to main content

Say goodbye to passwords on Android: Trust API could launch by the end of the year

chase bank eatm fraud news smartphone banking app password 123rf 26463673 ml
tashka2000 / 123RF Stock Photo
Typing passwords might be the biggest nuisance on mobile devices, and Google wants to kill them for good. Last week at Google I/O 2016, Daniel Kaufman, the head of Google’s Advanced Technology and Projects research unit (ATAP) updated us on Project Abacus, Google’s software-only plan to eliminate the need to enter passwords.

Announced at last year’s Google I/O, Project Abacus works by accumulating data about you such as the particular times and locations you might use an app, as well as your voice and face to derive a Trust Score. This Trust Score is then used to determine if it’s indeed you. If so, you won’t have to enter a password, and if not, well, you get the gist. Financial apps would require a very high Trust Score, while games and such wouldn’t be as stringent.

Recommended Videos

Engineers in Google’s search and machine intelligence teams created the Trust API, which will be tested at select banks starting in June. If all goes well, it’ll get released to all Android developers by the end of the year. As many as 33 universities across 28 states already ran trials last year.

Please enable Javascript to view this content

Google has dabbled in this area with Smart Lock, which was introduced in Android Lollipop. It allows you to automatically unlock your Android phone or tablet if you’re connected to a trusted Wi-Fi network or Bluetooth device. Another method is two-factor authentication, which is the practice of generating a unique PIN through an email or SMS message. A very secure method, but it’s too time consuming for the average user.

The problem with passwords is that people don’t remember them, so they tend to use simplified passwords. To make matters worse, most people will use the same password for multiple accounts, making them more vulnerable to attacks. Some have resorted to using password manager apps that automatically type passwords for you, but they can be a pain to set up. Google’s plan is to make things simpler, but even more secure than today’s standards.

“We have a phone, and these phones have all these sensors in them. Why couldn’t it just know who I was, so I don’t need a password? It should just be able to work,” said Kaufman at a developer session last Friday afternoon at Google I/O.

By bringing the Trust API to the app level, it will further protect app data from a stranger that who able to successfully unlock your device. Each app would determine that the user wasn’t you and would require a password to gain access.

From what we can tell, it doesn’t appear that Google will need to release a new version of Android for the Trust API to work, since it’s mostly at the app level. This means that it should work on older versions of Android as well, but we won’t know for sure until we get closer to its release later this year.

Robert Nazarian
Former Digital Trends Contributor
Robert Nazarian became a technology enthusiast when his parents bought him a Radio Shack TRS-80 Color. Now his biggest…
Google is launching a powerful new AI app for your Android phone
Google Gemini app on Android.

Remember Bard, Google’s answer to ChatGPT? Well, it is now officially called Gemini. Also, all those fancy AI features that previously went by the name Duet AI have been folded under the Gemini branding. In case you haven’t been following up all the AI development flood, the name is derived from the multi-modal large language model of the same name.

To go with the renaming efforts, Google has launched a standalone Gemini app on Android. Moreover, the Gemini experience is also being made available to iPhone users within the Google app on iOS. But wait, there’s more.

Read more
Google is killing your passwords, and security experts are (mostly) happy
Logging into a Google account with passkeys on an iPhone.

Google is inching closer to making passwords obsolete. The solution is called "Passkeys," a unique form of password that is stored locally on your phone or PC, just the way a physical security key works. The passkeys are protected behind a layer of authentication, which can be your fingerprint or face scan — or just an on-screen pattern or PIN.

Passkeys are faster, linked across platforms, and save you the hassle of remembering passwords for websites or services that you have subscribed to. There is a smaller scope for human error, and the risks of 2-factor authentication code interception are also reduced.

Read more
I’ve used Android phones for 10 years, and I hate these ones the most
pixel 4 xl rear sticking out

I’ve been using and reviewing Android smartphones for at least a decade, and during that time, I’ve spent time with a massive variety of devices that mostly fall into three distinct categories: good, passable, and bad. But what about the ones that have really stirred my emotions in a negative way? The phones that have elicited a visceral, guttural response? I’m not talking about the ones I love, but the ones I’ve downright hated.

Here are the six models that have irked me the most over the last 10 years of using and reviewing smartphones, and the reasons why they’ve made this list.
Google Pixel 4

Read more