04 Aug 2016
Daniel Kauffman in Google I/O Conference 2016.

Google plan to implement Trust Score in smartphones

Say Goodbye to passwords like Pass1, 123456, etc. You’ve been hearing about it for years but now it might really be happening.

Recently happened Google’s I/O developer conference, Daniel Kaufman, head of Google’s advanced technology projects, announced that the company plans to replace password access of its Android mobile platform with a trust score by next year. This new feature would be based on an array of detectors including your Wi-Fi network and various Bluetooth devices you’re connected to and your location, along with biometrics, including your typing speed, voice and face.

The phone’s sensors will be used to harvest this data continuously to keep checking on how much it trusts that the user is you. A low score will suffice for opening a gaming app. But a banking app will require more trust.

png;base64c8619d056589ae93

It’s a trend trying to build security and privacy into design, instead of making it the concern and responsibility of the user to remember passwords and attempting to use easily memorable and hackable passwords, a way of doing things that long ago became untenable, says Angela Sasse at University College London. “Don’t make it the individual’s problem,” she says. “It’s not uncommon for people to spend 30 minutes a day on various authentication tasks.”

Partly as a result of this, people stubbornly refused to budge from old easily memorable passwords like 123456 – even in an age of seemingly never-ending password leaks and hacks. Last week Microsoft banned the most commonly used passwords including password, 123456, and QWERTY across several of its services including Skype and Outlook.

Google hinted that it would be collaborating with major banks, but banks have begun to look into this independently, says Sasse. “Many banks are already authenticating transactions based on a suite of background information.” HSBC announced voice recognition in February.

Especially interesting are behavioral biometrics like keystroke recognition, in which some banks have already shown an interest. “Behavioral biometrics have higher recognition rates and are more accurate than classic biological markers,” says Sasse.

Alternative ways of authenticating users have other benefits too. Kaufman said that the trust method is better than two-factor authentication because it does not break down if phone signal is unavailable.

png;base64b8a843decbfbbfce

However, several people have expressed concerns in the past week about whether injuries could affect their characteristic way of typing, for example, and impact the trust score sufficiently to prevent access to apps. “What if I break my arm?” one engineer asked on Twitter.

Developer kits is expected to be available by the end of this year.

About Pooja Chauhan

Poo has a story to share, a really larger than life story to share, a story which should inspire a generation of girls to achieve more. Hopefully she will share this story sometime soon. She was a national level athlete, hockey player as well as a NCC cadet before she gave it all up to pursue her professional career. She did her MBA in Marketing from PTU and is a big digital enthusiast. She has close to a decade of experience in Customer Interfacing Management roles in Retail and Technology vertical. She has worked with brands like Pepsico, Pernod Ricard and was also one of the founding members of ideaPot. Poo spearheads business strategy, communication, customer engagements and P & L of the organization. Her consultative approach to handle customer engagements is one the main reasons why our Product Engineering Team gives paramount precedence to business goals. She is not risk averse and would go a thousand miles to find the right answers. Her never ending enthusiasm to identify “what is my 100%” drives the entire organization to strive for more.

Comments

Leave a Comment