Yahoo is out there taking on a new approach called on-demand passwords. Passwords are a pain. They are often insecure and inefficient too. With two-factor authentication seeming
to be a more secure option, most of the leading companies have seemed
to adopt them. But only companies that are bothered about digital identities take some time off to set up two-factor authentication.
On- demand Passwords: The First Step to Eliminating Passwords
Just like the two-step authentication , a unique time sensitive code
will be sent. The code will be sent through an app or a text message
to your phone that will let you log in. Here is the twist, you will not
have to type in your primary password first. Yes, that’s it.
Through on demand passwords there will not be a permanent password tied
to the account. That is the password that is required to log in through
other authentication methods. In fact this may be also referred to as one-step authentication. When you are to sign in to your account there will be a “Send my password” button. This button replaces the traditional password text box. Now the new sign-on method is available.
Yahoo VP Dylan Casey called this on- demand password as ”the first step to eliminating passwords”
On-demand Passwords: A New Simple Way to Log In
You no longer have to memorize a difficult password to sign in to your account – what a relief!
The steps easy to follow – check them out below.
1) Sign in to your Yahoo.com account.
2) Click on your name at the top right corner to go to your account information page.
3) Select “Security” in the left bar.
5) Enter your phone number and Yahoo will send you a verification code.
6) Enter the code and voila!
And the next time you sign-in, a password will be sent to your phone when you need it to log in.
On-demand passwords is now available for U.S. users.
On -demand Passwords: How Secure are they?
All though it may be the first step to eliminating passwords, there is no doubt that on-demand passwords are inherently less secure.
Definitely less secure when compared to the two-step authentication.
This feature is already offered by Yahoo as an optional feature to its
users. Just in case your phone happens to fall into wrong hands , there
is a possibility of compromising security. With on-demand password
there lies a choice between convenience and security. Though it may seem
like an option to some to leave old passwords behind, the choice seems
to be in the users hands.
With many companies venturing into trying out the biometric
readers like finger print scanners for a solution to eliminate
passwords. This on-demand password seems to take a place with Yahoo
taking all attempts to come out with a new technique. Although the
company is not so popular for security standards it is working to turn
that around.
End-to -end Encryption
With on-demand passwords under the process, Yahoo has also come up with end-to-end (e2e)
encryption. Yahoo revealed a working version of the new end-to-end
encryption system at South by Southwest festival in Austin, Texas. The
system is designed in such a way to encrypt emails faster. The system
is built off Chrome Extension. The Google made Chrome Extension is
still in the alpha stage.
The new encrypted email service has been
purely designed to make it easy for average users to send scrambled
message. Although the company has acknowledged the fact that some fields
cannot be masked completely. Somehow Yahoo’s encryption appears to be notably faster through a version of PGP (Pretty Good Privacy) encryption.
Video Demo Showcasing E2E
The comparison between Yahoo’s encryption method with that of traditional methods. The traditional methods that are particularly not user-friendly.
Bottom-line
It looks like the system wont be automatically enabled
for every mail unfortunately. Yahoo Security Chief Alex Stamos said
that the users can employ the security measure for particularly
sensitive emails only. As quoted in the Wall Street Journal, some fields
will still be unencrypted. Field like recipient, subject and timestamp
will be unencrypted. Message contents will be visible only the sender
and intended receiver. This end-to-end encryption from Yahoo is
expected to be available by the end of this year.
For your queries to be addressed
regarding to the content of the article, comment in the section below.
Your valuable feedback and comments are welcome. For daily updates on
technology do visit us again. You can also catch us on our Facebook, Twitter, Google+ and Pinterest for timely updates.
For More Information checkout http://techliveinfo.com
No comments:
Post a Comment