Passwords, a new authentication method dubbed the “password killer,” have reached Microsoft’s consumer accounts.
In a blog post published earlier this week, Microsoft enthusiastically announced the introduction of the new feature, describing it as the “next step toward our vision of simple, secure access for everyone.”
With a Microsoft account, a consumer can sign in once and then use a wide range of business services, from email to cloud, gaming and more.
Killing passwords
Some of Microsoft’s most popular services include Outlook (formerly Hotmail), OneDrive (cloud storage), Skype (communications), and Xbox Live (gaming). Additionally, users with a Microsoft account can access the Microsoft Store to download and purchase additional games, apps, TV shows, and other content.
“Starting today, you can use a passkey to access your Microsoft account using your face, fingerprint, or device PIN on Windows, Google, and Apple platforms,” Microsoft explains. “Your password gives you quick and easy access to the Microsoft services you use every day, and it will protect your account from malicious attacks much better than your password.”
Microsoft has even gone so far as to say that it will “almost completely” replace passwords.
“We hope this happens soon,” they concluded.
Unlike passwords, passkeys use two unique keys: one stored on the service and the other on the device, protected by a PIN or biometrics. To log in to a service, it is no longer sufficient for the attacker to know the password or PIN code. They also require physical access to the user’s device, where the other half of the key is stored. Furthermore, all phishing landing pages are outdated as part of the access key will never work on a fake login site.
“The best thing about password keys is that you never have to worry about creating, forgetting, or resetting passwords again,” Microsoft concluded.