Google Wants To Eliminate Password Login

Google has begun testing a password-free login method that enables users to log in using their smartphones.

Kelly Sheridan, Staff Editor, Dark Reading

December 22, 2015

3 Min Read
<p align="left">(Image: Rohit Paul/Reddit)</p>

Best Mobile Tech Of 2015: Our Top 10 List

Best Mobile Tech Of 2015: Our Top 10 List

Best Mobile Tech Of 2015: Our Top 10 List (Click image for larger view and slideshow.)

Google is experimenting with a password-free login method. A new feature promises to let you enter your account with a smartphone and skip the less-secure requirement of typing a password.

The idea is that users will begin the login process on the PC, but authorize the login through smartphone notification. It promises a more secure way to access Google accounts without using two-factor authentication.

This update comes from a Reddit user who wrote about his firsthand experience. Rohit Paul, or rp1226, received an email from Google inviting him to test the new login process on his personal device, along with a select group of account holders.

[Google, Apple and Facebook have the most-used apps of 2015.]

So how does it work?

According to Paul, you must first authorize your phone to enter the Google account. When you type in your email on the Google sign-in page, you'll receive a notification on your smartphone that will ask you to approve the login.

When you tap "yes," the computer will access your Google account -- no passwords necessary. Once your phone is authenticated, you'll be able to enter your account on new devices by using your smartphone.

In the event your phone is lost, dead, stolen, or forgotten, you have the option to access your account via regular password login. For an added security step, Google will prompt you to enter your password if it notices something strange about your login method.

"We've invited a small group of users to help test a new way to sign-in to their Google accounts, no password required," a Google spokesperson said to VentureBeat. "'Pizza,' 'password,' and '123456' -- your days are numbered."

This is Google's latest attempt to eliminate the traditional password, which it believes is a poor means of securing user accounts.

In a study released in May 2015, the tech giant revealed that even users' security questions are not secure enough to be used for account recovery. Most people can't remember the answers when they need to, and oftentimes hackers can guess the answer to questions like, "What's your favorite food?" (Pizza, of course.)

Earlier this year, Google aimed to improve security by launching a Chrome extension called Password Alert. The tool is built to protect user accounts by alerting them when they enter a Google Account password or a Google for Work password anywhere other than a Google login page.

Google also allows users to access their accounts through two-factor authentication, but it will need a simpler and faster method if it wants to convince the masses they should abandon their longtime password login. This new method could fit the bill.

It should be noted that the new login feature currently works for both iOS and Android devices. It's currently undergoing testing by a small group of Google users.

If you want to improve your account security but weren't invited to test out Google's newest experiment, you could opt to download a password manager. These mobile apps are designed to create and store secure passwords across all your devices.

**Elite 100 2016: DEADLINE EXTENDED TO JAN. 15, 2016** There's still time to be a part of the prestigious InformationWeek Elite 100! Submit your company's application by Jan. 15, 2016. You'll find instructions and a submission form here: InformationWeek's Elite 100 2016.

About the Author(s)

Kelly Sheridan

Staff Editor, Dark Reading

Kelly Sheridan is the Staff Editor at Dark Reading, where she focuses on cybersecurity news and analysis. She is a business technology journalist who previously reported for InformationWeek, where she covered Microsoft, and Insurance & Technology, where she covered financial services. Sheridan earned her BA in English at Villanova University. You can follow her on Twitter @kellymsheridan.

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

You May Also Like

More Insights