Programs specialized in creating and saving passwords tend to all work in a similar way. There is a master password that we do have to remember, and with it we will have access to all the access codes of all the online services that we use. They also usually have an extension in the browser so that the passwords are automatically filled in every time we open an address in which we have previously registered.
It’s convenient and secure, as the master password is encrypted on our computer, so it’s never stored in the cloud and can’t be stolen.
The problem is that on many occasions it is not comfortable to be putting our master password to recover the key of some service, that is why Lastpass has gone one step further to avoid having to put it.
For this to be possible, it will use the mobile, an app that will be in charge of unlocking access on the PC, similar to what we see in Google when it asks us “have you been the one who has been identified on a new mobile?”
This is a solution already featured on lastpass.com, a simple and secure login without a password using the LastPass Authenticator on the smartphone.
The solution created is FIDO compliant, and is the result of over 18 months working to identify the best way forward to ensure customers have a seamless and secure passwordless experience.
They are also working on authentication mechanisms, such as biometric face identification and fingerprints, as well as hardware security keys, solutions that we will see before the end of the year.
A solution without a password helps to make the keys more complex and secure, since by not having to memorize them, we can use the basic recommendations to avoid weak or reused passwords. On the other hand, it will save time and improve productivity in work teams, which will be able to securely enter their platforms without having to write passwords or retrieve them via email.
It is true that it will be necessary to enter the master password from time to time, but with Lastpass Authenticator the frequency will be much less.
