Currently, the technology of passkeys limits their presence in the software ecosystem of only one developer – as a result, users are forced to create duplicates of them to log into one system.

Image source: Pete Linforth / pixabay.com

Access keys are the most successful attempt to date to rid humanity of traditional passwords; And now the technology industry is looking to fix one of the shortcomings of this solution by providing the ability to export and import access keys when moving them from one platform to another. The technology’s organization, the FIDO Alliance, announced a new initiative to “securely move access keys” between service providers and presented draft specifications for an updated protocol and access key data exchange.

«Secure sharing of credentials is a priority for the alliance because it can improve the user experience, but until now there has been no secure way to share this information between providers,” the organization said in a statement. Now users can create access keys using software solutions from Apple, Google and Microsoft, as well as password manager platforms. Ideally, it would be possible to sync the same set of keys across different platforms, but for now they are limited by each company’s software ecosystem, which means that you have to create duplicate keys to log into the same account.

Image source: Gerd Altmann / pixabay.com

This limitation is currently circumvented using QR codes, but the FIDO Alliance aims to ensure full interoperability by “eliminating any technical barriers” associated with passkey technology. “It is critical that users can choose their preferred credential management platform and securely change credential [system] providers without restrictions,” the organization said in a statement. The draft specification promises encrypted export and import of access keys, although in its current form it uses an unprotected plaintext CSV file; It is also expected to deploy tools that will prevent hackers from abusing the mechanisms for transferring access keys.

It will take some time for the FIDO Alliance to solidify the specifications and subsequently enable commercial deployment, but they will eventually be open and available for adoption by credential vendors so that users can change them securely and easily. The association accepts feedback on the draft specifications on the GitHub platform – 1Password, Bitwarden and Google have already contributed to the project.

admin

Share
Published by
admin

Recent Posts

US authorities intend to cut the amount of subsidies provided to Intel for the construction of enterprises

The Taiwanese company TSMC was among the first chip manufacturers building plants in the United…

1 hour ago

Among potential investors in Altera, a company has appeared that is ready to buy it entirely

Intel representatives have already noted that they are not going to sell the Altera subsidiary…

2 hours ago

Intel is thinking about selling land in the US to save money

Intel Corporation is currently restructuring its assets and trying to find new owners for some…

4 hours ago

Humanoid robot Figure AI has learned to perform tasks 4 times faster and 7 times more accurately

Earlier this year, Figure AI introduced its second-generation humanoid robot, Figure 02. In the few…

4 hours ago

Robots are taking over the factory floor: more than 10% of South Korea’s workforce is now machine-based

The International Federation of Robotics (IFR) has released a study showing that the use of…

7 hours ago