You can now sign in without a password using digital, internet banking and other mobile apps; This technology is also spreading on the web. Through Chrome for Android, O Google Allows you to sign in to your services using your fingerprint sensor or your phone's unlock pattern. The company has adopted the FIDO2 and WebAuthn standards that can also be found in other browsers.
The feature will be available “in the coming days” when you visit certain Google services on any Android 7.0 Nougat or higher device. If your phone or tablet does not have a fingerprint reader, you can use the system unlock pattern, PIN, or password.
To test this feature, follow the steps below:
- in Chrome for Android, visit passwords.google.com;
- choose a site to view or manage a saved password;
- Follow the instructions to confirm that you are trying to sign in.
This is just the beginning: Google plans to use this form of authentication for more services, considering that "new security technologies are outpacing passwords in terms of protection and convenience."
Google doesn't send fingerprint to cloud
The company recalls that its fingerprint is never transmitted to Google's servers. This is a fundamental part of any site that uses the FIDO2 standard: the device only provides cryptographic proof that you used biometrics; your fingerprint remains stored locally on the device.
Technically, Google uses the FIDO2 module built into Android 7 and higher to register a FIDO credential linked to the device. Then a compatible site – such as passwords.google.com – uses the WebAuthn standard to request the number that identifies this credential. Chrome (or another browser) requests this information from the system's FIDO2 module via an API. If all goes well, the result will be a valid FIDO2 signature, and login will be allowed.
Google explains that with FIDO2 the same credential can be used by a mobile app and its web equivalent: “This means that the user only needs to register the fingerprint with the service once; it will work for both the native app and the web service. ”
This technology is also used for passwordless login to the Microsoft account: the Edge browser for Windows 10 supports authentication via Windows Hello, through a fingerprint reader or face recognition camera.
With information: Google.