Yahoo is out there taking on a new approach called on-demand passwords. Passwords are a pain. They are often insecure and inefficient too. With two-factor authentication seeming to be a more secure option, most of the leading companies have seemed to adopt them. But only companies that are bothered about digital identities take some time off to set up two-factor authentication.
On- demand Passwords: The First Step to Eliminating Passwords
Just like the two-step authentication , a unique time sensitive code will be sent. The code will be sent through an app or a text message to your phone that will let you log in. Here is the twist, you will not have to type in your primary password first. Yes, that’s it. Through on demand passwords there will not be a permanent password tied to the account. That is the password that is required to log in through other authentication methods. In fact this may be also referred to as one-step authentication. When you are to sign in to your account there will be a “Send my password” button. This button replaces the traditional password text box. Now the new sign-on method is available.
Yahoo VP Dylan Casey called this on- demand password as ”the first step to eliminating passwords”
On-demand Passwords: A New Simple Way to Log In
You no longer have to memorize a difficult password to sign in to your account – what a relief!
The steps easy to follow – check them out below.
1) Sign in to your Yahoo.com account.
2) Click on your name at the top right corner to go to your account information page.
3) Select “Security” in the left bar.
4) Click on the slider for “On-demand passwords” to opt-in.
5) Enter your phone number and Yahoo will send you a verification code.
6) Enter the code and voila!
And the next time you sign-in, a password will be sent to your phone when you need it to log in.
On-demand passwords is now available for U.S. users.
On -demand Passwords: How Secure are they?
All though it may be the first step to eliminating passwords, there is no doubt that on-demand passwords are inherently less secure. Definitely less secure when compared to the two-step authentication. This feature is already offered by Yahoo as an optional feature to its users. Just in case your phone happens to fall into wrong hands , there is a possibility of compromising security. With on-demand password there lies a choice between convenience and security. Though it may seem like an option to some to leave old passwords behind, the choice seems to be in the users hands.
With many companies venturing into trying out the biometric readers like finger print scanners for a solution to eliminate passwords. This on-demand password seems to take a place with Yahoo taking all attempts to come out with a new technique. Although the company is not so popular for security standards it is working to turn that around.
End-to -end Encryption
With on-demand passwords under the process, Yahoo has also come up with end-to-end (e2e) encryption. Yahoo revealed a working version of the new end-to-end encryption system at South by Southwest festival in Austin, Texas. The system is designed in such a way to encrypt emails faster. The system is built off Chrome Extension. The Google made Chrome Extension is still in the alpha stage.
The new encrypted email service has been purely designed to make it easy for average users to send scrambled message. Although the company has acknowledged the fact that some fields cannot be masked completely. Somehow Yahoo’s encryption appears to be notably faster through a version of PGP (Pretty Good Privacy) encryption.
Video Demo Showcasing E2E
The comparison between Yahoo’s encryption method with that of traditional methods. The traditional methods that are particularly not user-friendly.
Bottom-line
It looks like the system wont be automatically enabled for every mail unfortunately. Yahoo Security Chief Alex Stamos said that the users can employ the security measure for particularly sensitive emails only. As quoted in the Wall Street Journal, some fields will still be unencrypted. Field like recipient, subject and timestamp will be unencrypted. Message contents will be visible only the sender and intended receiver. This end-to-end encryption from Yahoo is expected to be available by the end of this year.
For your queries to be addressed regarding to the content of the article, comment in the section below. Your valuable feedback and comments are welcome. For daily updates on technology do visit us again. You can also catch us on our Facebook, Twitter, Google+ and Pinterest for timely updates.
For More Information checkout http://techliveinfo.com
No comments:
Post a Comment