LastPass announced that users of its password manager can now log into your private vault without a master password.
Under the new system, customers will authenticate their identity through the LastPass Authenticator app, using biometrics or fingerprint identification. physical support security keys will be added later.
According to LastPass, the new feature makes its service the first of its kind to offer passwordless authentication.
A future without a password
There are a number of advantages to passwordless login, particularly in the context of password managers, which house a treasure trove of personal information and account credentials.
The main benefit is that biometrics-based authentication systems are immune to phishing, password stuffing attacks, and security risks created by password reuse (eg, third-party data breaches).
LastPass also predicts that introducing an easier way to log in (one that doesn’t involve typing and retyping the same complex password) will encourage more people to adopt password managers, minimizing the opportunity for account hijacking.
At first, users will still need to set a master password when opening a new LastPass account, but the ultimate goal is to transition to a completely passwordless system based on FIDO standards in the future.
“Following tech giants and identity providers unveiling their plans to enable passwordless passwords on their operating systems, web browsers. said Chris Hoff, director of security technology at LastPass.
“While the widespread implementation and adoption of passwordless passwords is the industry’s ultimate goal, it will be years before people experience an end-to-end passwordless login across all applications, but LastPass will get you there sooner.”