Google’s password-killer tool is now available on Chrome and Android
>
Google Chrome and Android are getting support for passkeys, a new security feature designed to replace traditional passwords, the company has revealed.
In a blog post (opens in new tab)Google said users can now create and use passkeys on Android devices, which are securely synced through the Google Password Manager (opens in new tab).
On the other hand, developers can integrate passkey support on their sites for end users using Chrome through the WebAuthn API, on Android and other supported platforms.
Eliminate Weak Passwords
Those eager to try the new features should sign up for the beta version of Google Play Services and use Chrome Canary. General availability on stable channels for both features is expected “later this year,” Google says, meaning we shouldn’t be waiting too long.
Passkeys were first announced by Apple in the summer of 2021 and were described by the company as a “new way to make the web more secure” as weak and recycled passwords are considered one of the most common reasons for data breaches.
Passkeys use “powerful cryptographic techniques and the biometrics built into the device” to keep accounts secure, Adler explained, requiring users to simply use TouchID or FaceID to authenticate to a new web app, mobile app or service. to create a password.
Darin Adler presented the security key feature to the world at WWDC 2022, Apple’s VP for Internet Technologies, Darin Adler described Passkeys as a “next-gen reference that is more secure, easier to use and focused on replacing passwords.” (opens in new tab) for good”.
Google seems to be on board with this review, with the announcement describing it as a “significantly more secure replacement for passwords and other perishable authentication factors”.
The company says that passwords cannot be reused, do not leak in server breaches, and protect users from phishing attacks. They are based on industry standards, work across operating systems and browser ecosystems, and can be used for both websites and apps.
Google’s next milestone in this process is an API for native Android apps, which will be available later this year. Passwords created via the web API “work seamlessly” with apps connected to the same domain, the company added, suggesting this move is part of a larger transition. The native API gives apps a unified way to let users choose between a passkey and a stored password.
“Seamless, trusted UX for both passwords and passkeys helps users and developers gradually transition to passkeys,” Google concluded.