Android users may soon have the capacity to let go off some of their passwords for good….as dubbed Trust API or Google Project Abacus, a password-killing project, is all set to launch this year.
The company plans to begin testing the primary version of its password-killing Google Project Abacus with banking apps one month from now. Google says that it will make the tools accessible to all Android developers before 2016 is over.
Trust API was first created under codename – Google Project Abacus.
First previewed amid last year’s I/O developer conference, Project Abacus is Google’s Advanced Technology and Projects (ATAP) team’s ambitious plan to take out passwords. As opposed to utilizing passwords to affirm your identity, Abacus utilizes sensor data from your phone to check your identity and then confirm it.
Given the news, Android users will be able to log in to several services via a combination of their face, typing patterns, and the way they move!
Dan Kaufman, ATAP head said during a session at I/O Friday,
WE HAVE A PHONE AND THESE PHONES HAVE ALL THESE SENSORS IN THEM, WHY COULDN’T IT JUST KNOW WHO I WAS SO I DON’T NEED A PASSWORD, I SHOULD JUST BE ABLE TO WORK.
To accomplish that objective, Google is taking a shot at this new developer API called the Trust API, which will permit application developers to take advantage of this information.
Google Project Abacus aims to kill passwords not with one super-secure alternative, but with a mix of multiple weaker indicators into solid evidence that says who you are that you say you are.
Some of the pieces of evidences it will use as biometric indicators are your face shape, voice pattern, how you type or the way you swipe on screen. It will also include things like your location and facial recognition – so as to check your identity.
WHAT WE’RE GOING TO BE ABLE TO DO WITH THIS IS GET RID OF THE AWKWARDNESS OF SECOND FACTOR AUTHENTICATION, KAUFMAN ADDED.
Google is in plans to start testing the API with multiple expansive financial institutionsstarting in June and – gave the tests go well – will make the API generally available to Android developers nearly by the end of this year.
The service will be open to third-parties to allow other organizations verify your identity through the API.
Instead of a binary answer as in the case of a password, the API can show a score indicating how confident it is that you really are you! If the institution needs more confidence, it can feed back and simply ask for more mechanisms, like more biometric data, or just an old-style password,
Richard Lack, working at Customer Identity Management firm Gigya said,
“BIOMETRIC AUTHENTICATION IS A POWERFUL ENABLER, ALLOWING BUSINESSES SMART ENOUGH TO DEPLOY IT TO SIGNIFICANTLY INCREASE RATES OF REGISTRATION, GAINING DATA AND INSIGHT ABOUT THEIR CUSTOMERS, WHILE ALSO INCREASING CUSTOMER SECURITY. THIS IS A WIN/WIN SCENARIO WHICH SOUNDS THE DEATH-KNELL FOR AWKWARD AND INSECURE PASSWORDS SOONER THAN WE MAY IMAGINE.”