In three days, it’s World Naked Gardening Day and a few days later it’s International Hummus Day. But today is World Password Day, a day when we all commit to improve our password habits. I’ve got to admit when I first heard about it I thought it might have been a joke, but actually it probably is time we started to take passwords a bit more seriously.
Almost every week there’s another headline about a massive data breach with millions of people’s details being leaked. And we secure some pretty important stuff with passwords – banking, government services, online shopping. I even have a password to pick up my son from nursery.
But despite the importance of the data we are trying to keep safe, we use ridiculous passwords like ‘Password1’, ‘123456’, ‘Chelsea2017’ or the old classic favoured by IT managers ‘ch4ngeme!’. How many of you still have that password in use?!
And the crazy thing is, a significant proportion of people then use this one crazily weak password across all of the websites they are signed up to. Madness.
We know that people want to keep their details safe. 87% of people say they don’t trust businesses to protect their personal information. But the hassle of remembering loads of complex passwords for sites they don’t visit every day is getting in the way.
What if there was a password you didn’t need to write down or remember, and you could use the same one for every site? Biometrics does exactly that. You can now log into a number of apps using your fingerprint on some iPhones and android devices. This is awesome and makes my life a whole lot easier, but we’re not all lucky enough to have top of the range phones.
One biometric that could be used by almost any smartphone is your face. But as the security geeks out there will be quick to tell you, this can be easily spoofed. People could hold up a picture of you and login to your account. To counter this, some biometric systems ask you to wink, but the security geeks are one step ahead. A video of you winking will get through that…I’m told you can even fool the wink by flashing a pencil in front of a static picture.
So we need a better way of checking people ‘own’ the face they are using to log in to websites, and then it looks like we’ve nailed it right?
Not quite. We then need all the websites we want to access to adopt this awesome new technology.
We’ve got a plan here at Yoti to kill passwords one step at a time. Our end goal is that all the major websites around the world will accept Yoti as a way of both logging into your account and as a way of creating your account in the first place. Imagine if you didn’t have to think of yet another username and password every time you opened a new account. And if you didn’t need to fill in all your personal details time and time again. Life would be a bed of roses.
But that’s going to take a little while. So in the meantime we’re building a really easy to use password manager. It will let you use your phone to log in to any website without having to remember any passwords at all. Sounds pretty handy right? Better still, it’s going to be locked down with Yoti’s military grade encryption AND we’ve got a pretty smart way of making sure you’re a real person that you can’t fool with the flick of a pencil…
If you have a website and fancy being one of the trailblazers that uses biometrics to register your customers and give them a way to log in without passwords, get in touch.