Windows 10 May Finally Mean The End Of Passwords

[steven36]

Windows 10 has been available for over a week now and tens of millions of PCs around the world have already upgraded to the latest flagship operating system from Microsoft.

​​

​

Windows 10 represents an evolution of the concept of what a desktop OS should be or the role it plays in an increasingly mobile and cloud-connected world. It also includes a variety of new and improved security features that enable you to use your computer and surf the Web with confidence.

​

Bill Gates predicted the demise of the password as a primary method of authentication at the RSA Security Conference in 2004. It’s more than a decade later and most of the world still relies on the simple username and password for granting access to PCs and sensitive applications and data. It’s also true that cyber criminals have gotten much better at compromising credentials and exploiting weak passwords. We’ve had ample evidence in recent years to demonstrate just why passwords should die and why two-factor authentication or alternative forms of authentication make more sense.

​

Windows 10 provides an opportunity for stronger authentication thanks to Microsoft Passport. Microsoft Passport integrates with a Microsoft Account, Active Directory (AD) account, Microsoft Azure Active Directory account, or non-Microsoft services that support FIDO (Fast ID Online) authentication. Users go through the process of enrolling in Microsoft Passport once and can then access the PC and all of their applications or services after authenticating with Microsoft Passport using a PIN, or Windows Hello.

​

Microsoft Passport relies on gestures and/or biometric methods for authentication rather than passwords. With no passwords to compromise the risk from phishing scams or brute force attacks is minimized. The potential for server breaches is also reduced because Microsoft Passport credentials use keys generated within secure environment of TPMs (Trusted Platform Modules).

​

Windows Hello takes the concept of Microsoft Passport to another level. Microsoft’s current Windows 10 TV campaign shows babies around the world and paints a picture of the technology they’ll grow up with—starting with the ability to log in with nothing but your smile. Windows Hello actually includes fingerprint scanning, iris scanning, and facial recognition, but it’s the facial recognition that has garnered the most attention. A Windows 10 PC with equipped with the right camera technology will simply recognize you and authenticate you as soon as you sit down at the computer.

​

The tricky part is finding a PC equipped with the right camera technology. The Windows Hello facial recognition is more advanced than simply matching an image of your face. Simple facial recognition can be circumvented using nothing more than a decent photo of the individual’s face on your smartphone. Windows Hello facial recognition requires an Intel RealSense 3D camera. The technology behind Intel RealSense 3D senses depth and identifies uniquely personal characteristics that go beyond the surface image—it’s a more comprehensive imaging capability similar to the way Microsoft’s Kinect is able to recognize Xbox users.

​

Passwords are a pain. It’s a challenge to think up complex passwords and then keep track of them all and it seems that no matter how strong your passwords are the bad guys still find ways to compromise them. It’s taken much longer than Bill Gates dreamed in 2004, but it really is time for the password to die and security technologies like Microsoft Passport and Windows Hello make Windows 10 the operating system that may finally end your dependence on this antiquated form of authentication.

​

​Source

​

[mona]

this new technology looks very nice, but what if the user's face gets significantly changed suddenly as a result of - let's say - a car crash or a fire (third-degree burn) ?

http://www.dailymail.co.uk/health/article-2397874/A-car-crash-broke-face-half-Man-22-left-42-fractures-face-blind-eye-50mph-collision.html

http://1.bp.blogspot.com/_I2j2VVNXosc/SX3NGXTkcpI/AAAAAAAABV8/ln9RjvqjHoU/s320/dark_knight_twoface-795421.jpg

Would their computer stay locked forever ?

[Jordan]

seems to be promising!

Another step forward for intel :

Intel RealSense 3D depth camera fitted into smartphone http://www.bbc.com/news/technology-32215577

[Jordan]

this new technology looks very nice, but what if the user's face gets significantly changed suddenly as a result of - let's say - a car crash or a fire (third-degree burn) ?

http://1.bp.blogspot.com/_I2j2VVNXosc/SX3NGXTkcpI/AAAAAAAABV8/ln9RjvqjHoU/s320/dark_knight_twoface-795421.jpg

Would their computer stay locked forever ?

Will be recognized as The Joker (Batman Movies) ,-)

[CODYQX4]

How about no?

Besides the fact that I don't want to take a selfie to login, this tech always seems to be fooled by a high DPI scan of a face.

... and don't even get me started on the idea of using a facial scan on the privacy nightmare that is Windows (not that it wasn't bad before 10).

[steven36]

The day they do this will be the day I will no longer sign into sites at all .. I dont really believe they will do away with passwords it just be and option sort of like people already sign into a million sites with Facebook .or Google, etc. :P What if you are like me and not bothered hooking up a webcam in years ? There is no way they could force you to do this . Because most desktops dont come with a cam.

At the rate Microsoft is going you may need it sign in you're Microsoft account :lol: whats next are we going to have to show our face to get windows updates? :blink:

I would never sign a site to with piracy using and account that leads back to my real name. But lots do and some even post about piracy on Facebook using there real name.

I know sites that's been blocked by whole countries were you dont have log in too at all to do anything and people are dumb enough to login it with Facebook .

[LeeSmithG]

Why do Microsoft treat the majority of us like we're stupid.

I have been creating passwords for well over twenty two (22) years and they are always the maximum allowed and for Hotmail accounts that is sixteen (16).

They contain under scores ____, uppercase UPPERCASE , spaces ,special characters, &*!^"%£4 and lowercase.

So for example, *Y_j(0_64__ dYhn^ is an excellent example of a password, I have never used.

When at yahoo back in the day my things were forty (40) plus!

I have all my passwords encrypted, in a zip which is password protected and I log in with either my biometric device or sticky password.

So why Microsoft are trying to treat me like a moron I do not know.

Especially as a few years ago they got cracked and the password was the first name in lower case of the admin's girlfriend.

Microsoft should produce an operating system we want and let us deal with our own security.

[Chancer]

First rule of an IT helpdesk - the person ringing in is a moron.

Sadly they often are.....!

[coromonadalix]

Because peoples neglects security and they don't get the latest's news / tips that's why ....

[steven36]

First rule of an IT helpdesk - the person ringing in is a moron.

Sadly they often are.....!

Sadly when i called any place in the past like HP , Dell or my ISP provider . It was most the time the other way around . That's if I could get one that spoke English good enough to understand them. Id would just hang up and try again if I couldn't. I already knew what they was going to say before they said it I just made like I went through there motions so they would honor my warranty. I knew more than them before I called. :P

[Cereberus]

Why do Microsoft treat the majority of us like we're stupid.

I have been creating passwords for well over twenty two (22) years and they are always the maximum allowed and for Hotmail accounts that is sixteen (16).

They contain under scores ____, uppercase UPPERCASE , spaces ,special characters, &*!^"%£4 and lowercase.

So for example, *Y_j(0_64__ dYhn^ is an excellent example of a password, I have never used.

When at yahoo back in the day my things were forty (40) plus!

I have all my passwords encrypted, in a zip which is password protected and I log in with either my biometric device or sticky password.

So why Microsoft are trying to treat me like a moron I do not know.

Especially as a few years ago they got cracked and the password was the first name in lower case of the admin's girlfriend.

Microsoft should produce an operating system we want and let us deal with our own security.

you may be a vigilant citizen as jesse ventura would say, but unfortunately this is not the case for the majority of users. in a study they did, a ton of people use stupidly easy passwords ...... or even worse maybe slightly more complicated but use the same password for every place they visit which is a big security risk.

https://blog.lastpass.com/2012/03/latest-review-of-security-issues-and.html/

so microsoft along with the fido alliance are coming up with an easier way to have a secure password that is easy to the user, but hard for hackers still

biometrics is the future

http://www.theregister.co.uk/2015/05/27/forget_passwords_japanese_users_can_buy_online_with_their_eyeballs/

but the question is, will they be able to secure that from being hacked :o

PS: i think the average user these days ought to start using ublock+umatrix to prevent adware from sneaking onto your machines. unfortunately most don't even take that sort of precaution even with inferior alternatives like ghostery etc :{

for OS updates windows 10 are forcing people by default to update. unfortunately this cause driver graphics headers for some users X_X: you can google on that

[Jordan]

You're absolutly right! people doesnt take enough precautions! the best example for me is just around. some friends of mine never passworded their system, and most of them doesnt have any security program installed! the only password they use is the one for their e-mails! for worst, they offtenly use real names and birthday numbers!