Reports of the death of the password may have been greatly exaggerated in the media: from the suggestion that passwords are the ‘weakest link’ in the cybersecurity chain, to the notion that humans are so bad at using them, that it’s time the technology industry saved us from ourselves.

But is it true; are passwords doomed? Enter the FIDO2 Project – a fascinating effort to ‘Move the World Beyond Passwords’ led by the FIDO Alliance industry association and World Wide Web Consortium.

Headlines aside, FIDO2’s aims are ambitious: to replace passwords with a flexible device-based authentication standard that allows users to log in via biometrics or temporary security keys.

Unique to each website, not stored centrally and not transmitted, FIDO2 argue this standard naturally scuppers phishing, password theft and replay attacks – and introduces some privacy advantages sure to woo even ardent digital rights activists: such as the inability to track users between sites.

While still technically possible, cheating biometrics requires the kind of preparation not common to everyday opportunistic cyber-criminals.

The big players are taking note: Google plans to ‘begin’ retiring passwords for Google services accessed via biometric enabled smartphones (such as those with fingerprint scanners) and Microsoft is planning similar changes to apps in Windows 10; even talking of a ‘passwordless world‘ via Windows Hello that extends facial recognition. Apple have been publicly heading down this road for a while now – with ‘FaceID’ facial recognition introduced for recent generations of iPhone and iPad, as well as Apple Watch device-led unlocking for your Mac.

Apple’s efforts to prove that the iPhone stores only a ‘mathematical representation’ of the user’s face also suggests that they’re preparing to defend a policy of extending FaceID further at the expense of passwords, even in an increasingly privacy-conscious World.

Users may of course find the a world without passwords a little disorientating to begin with – although not forever, if the replacement technology proves more convenient.

Password keeper apps (such as the excellent 1Password) have become an interesting half-way house to a more secure password future – where the password manager retains a set of passwords behind a strong keycode, in an encrypted form. The password manager may also perform other useful functions, such as warning the user where passwords overlap, allocating different password access permissions to different people within a business or organisation, or auto-filling in common web browsers.

The adoption of password managers may reflect a coming time where users continue to ‘use’ passwords, but without engaging in the process of recalling or typing the password. It may not be passwords that are doomed, but the user’s traditional interaction with passwords.

Are passwords doomed? A few potential futures emerge: one where passwords exist but are used less directly by users, where passwords are relegated to a secondary security measure of questionable usefulness, or most radically, where passwords are replaced entirely.

For cybersecurity and IT expertise, please contact our team today.

Windows 10.1 updates security

With ‘Windows 10.1’ now barely a month old, and the Microsoft operating system already running on over 12 million business PCs, how fares Microsoft’s free updates strategy?

Windows 10.1 update was released with relatively little fanfare (be honest, you didn’t notice) adds features that, understandably with hindsight, might have been a distraction at the main Windows 10 release back in July.

Packaged within were mainly performance and security upgrades – Windows 10.1 will now boot almost 30% faster than an old Windows 7 system on the same device, the Cortana virtual assistant has some new handwriting recognition skills and there are new enterprise tools for mobile devices. Microsoft Edge runs smoother too, offering previews of tabs before viewing and syncing favourites across devices.

Most importantly, after recent corporate data breaches in the news, Microsoft have added a range of new security safeguards. These including ‘Windows Hello’, supporting enterprise grade biometrics including fingerprint and facial recognition – sadly currently only available for US users.

Aside from controversy surrounding user privacy then (if you didn’t notice your Windows 10.1 update, that’s maybe because Microsoft installed it automatically on your device without asking you) the first free update went ahead with relevant additions and limited fuss.

Starting free updates officially moves Microsoft into line with Apple’s OS X business model that has become the industry standard. Yet limited promotion of Windows 10’s ongoing development risks downplaying Microsoft’s progress.

Which would be unfair, because Microsoft is plainly taking extra care to develop the business security of their product range, including the excellent Office365, Microsoft Azure and now Windows 10.1. Microsoft is clearly listening to business’ fears, and businesses should welcome it.

For help and support with Microsoft enterprise IT, contact Lineal today.

This week saw the hotly anticipated release of the iPhone 6S and 6S Plus, Apple Inc’s flagship smartphone announced in their annual product release that has become as inevitable as the tides.

With the iPhone now accounting for something close to 70% of Apple’s revenue, the 6S and 6S Plus were the main attraction. The new design fixes old durability problems with a stronger case and tougher screen, but added features include the obligatory faster processor, a new rose gold colour choice, and an upgraded 12MP camera – all aimed at keeping ahead of the competition, at least when it comes to performance.

‘3D Touch’ is Apple’s newest technical innovation, making the screen of the company’s newest devices pressure sensitive. This gives users the illusion of screen depth by accurately judging the strength of the screen press, allowing for new capabilities like a ‘peek’ at an app with a gentle touch, and giving Apple another technical edge with which to play the long game.

Not that Apple’s thinking hasn’t been questioned: commercial clients may find the power to shoot high resolution 4k video enticing, but will likely be sceptical at how practical it is to save such high-quality video files on a smartphone.

Indeed, for a company whose founder’s dislike of the stylus is well documented, releasing a large tablet with a stylus appears an open invitation for criticism. Nevertheless this is exactly what Apple have now done, introducing the new iPad Pro, a 12.9 inch tablet, ostensibly optimised for creative use by designers, illustrators and other editors needing a larger screen.

The demonstration of the iPad Pro included the new $99 (£65) stylus, the Apple ‘Pencil’ effortlessly photoshopping a woman’s smile on screen, an illustrative but perhaps ill-chosen example that somehow made it through Apple’s press office without ringing media alarm bells. Appropriate use aside, the technology is nevertheless impressive: the Apple pencil combined with 3D Touch allows pressure sensitive brush strokes on screen drawn with great precision.

This year’s releases represent Apple maturing a little, yet still relying on groundbreaking technical features to stay ahead of the curve.  Apple Inc. shares actually slid two percent to close lower on Wednesday, with investors holding their breath to see whether the new products were enough to really ‘impress’ customers. The tech giant has arguably sacrificed some of the flamboyance of previous years’ releases to concentrate on the innovation needed to outpace rivals, and open more important doors for its own future, including in the form of its renewed invasion into our living rooms with the new Apple TV and tvOS complete with the long heralded AppStore.

Lineal has over 20 years of business experience with Apple Mac, including connecting your mobile devices for working on the move – why not get in touch with us today? http://www.lineal.co.uk/contact/