Ekukhunjweni koSuku lwePassword yeHlabathi, eyayiyizolo, ngoMeyi 5, i-Apple, iGoogle, kunye neMicrosoft baqalisa "umgudu odibeneyo" wokuqhawula "iphasiwedi."
Kwaye oko ababoneleli abaphambili iinkqubo zokusebenza ufuna "ukwandisa inkxaso yomgangatho oqhelekileyo wokungena ongenamagama eyenziwe yi-FIDO Alliance kunye ne-World Wide Web Consortium.
lo mgangatho ibizwa ngokuba "lulwazi lweFIDO lwezixhobo ezininzi" okanye ngokulula "iphasiwedi". Endaweni yoluhlu olude lwabalinganiswa, le nkqubo intsha ilindele ukuba i-app okanye iwebhusayithi osayinwe kuyo ithumele isicelo sobunyanisekiso kwifowuni.
Ukusuka apho, kuya kufuneka uvule ifowuni, uqinisekise nge-PIN okanye i-ID yebhayometriki, emva koko ungaqhubeka. Injongo kukuphumeza ukuqinisekiswa okulula kokulawula, okuhambelanayo kweplatform yesoftware kunye neewebhusayithi, ngaphandle kokukhumbula amagama ayimfihlo.
Kumzamo odibeneyo, iingxilimbela zetekhnoloji iApple, uGoogle, kunye neMicrosoft ibhengezwe izolo ekuseni ukuba bazimisele ukuphumeza inkxaso yokungena kwi-password kuzo zonke iiselfowuni, idesktop, kunye namaqonga okukhangela abawalawulayo kulo nyaka uzayo.
Oku kuthetha ukuba ukuqinisekiswa okungenamagama okuyimfihlo kuya kufumaneka kuwo onke amaqonga ezixhobo ezikhulu kwixesha elizayo elingekude: Iisistim ze-Android kunye ne-iOS esebenzayo, iChrome, i-Edge, kunye nezikhangeli zeSafari, kunye neemeko zedesktop zeWindows kunye neMacOS.
“Kanye njengokuba siyila iimveliso zethu ukuba zibe lula kwaye zibe namandla, sikwayila ukuba zibebucala kwaye zikhuseleke. Ukusebenza noshishino ukuseka iindlela ezintsha, ezikhuselekileyo zokungena ezibonelela ngokhuseleko olungcono kwaye ziphelise ukungakhuseleki kwe-password kungundoqo wokuzibophelela kwethu ekwakheni iimveliso ezinikezela ngokhuseleko oluphezulu kunye namava omsebenzisi angenamthungo, zonke ngaxeshanye. inkcukacha zimntu. ngokuqinisekileyo,” utshilo uKurt Knight, umlawuli ophezulu wentengiso yemveliso yeqonga eApple.
Inkqubo yokungena engenamagama izakuvumela abasebenzisi ukuba bakhethe ifowuni yabo njengesixhobo sokuqala sobuqinisekiso yeapps, iiwebhusayithi, kunye nezinye iinkonzo zedijithali, njengoko uGoogle echaza kwiposti yebhlog epapashwe izolo.
Ke kuya kukwanela ukuvula ifowuni kunye nesenzo esichazwe ngokungagqibekanga (faka ikhowudi ye-PIN, uzobe ipateni, okanye uvule usebenzisa ushicilelo lweminwe) ukuqhagamshela kwiinkonzo zewebhu ngaphandle kokufaka igama eligqithisiweyo, ngenxa yokusetyenziswa komqondiso we-cryptographic owahlukileyo obizwa ngokuba "sisitshixo sofikelelo", ekwabelwana ngaso phakathi kwefowuni kunye nefowuni. iwebhusayithi.
“Esi siganeko sibalulekileyo sibubungqina bomsebenzi wentsebenziswano owenziwayo kulo lonke ushishino ukomeleza ukhuseleko nokuphelisa uqinisekiso lwamagama ayimfihlo aphelelwe lixesha. KuGoogle, esi siganeko sibalulekileyo simele phantse ishumi leminyaka lokusebenza kunye neFIDO, njengenxalenye yokuqhuba kwethu ukuqamba izinto ezintsha kwikamva ngaphandle kwamagama ayimfihlo. Sithemba ukwenza ubuchwepheshe obusekwe kwi-FIDO bufumaneke kwiChrome, ChromeOS, Android, kunye namanye amaqonga, kwaye sikhuthaza usetyenziso kunye nabaphuhlisi bewebhusayithi ukuba bamkele, ukuze abantu kuyo yonke indawo bafunde ngakumbi. ' utsho uMark Risher, umlawuli omkhulu kuGoogle wolawulo lwemveliso.
Ngokwenza unxibelelwano luxhomekeke kwisixhobo somzimba, Umbono kukuba abasebenzisi ngaxeshanye bayaxhamla kubulula kunye nokhuseleko. Ngaphandle kwegama eligqithisiweyo, awuzokufuna ukukhumbula iinkcukacha zakho zokungena kwiiNkonzo okanye ulahlekise ukhuseleko ngokusebenzisa igama lokugqitha elinye kwiindawo ezininzi.
Ngokufanayo, ngenkqubo engenamagama okugqitha, kuya kuba nzima kakhulu kubaduni ukuthomalalisa idata yokungena ekude, ekubeni i-login ifuna ukufikelela kwisixhobo somzimba; kwaye, ngokwethiyori, uhlaselo lobuqhetseba apho abasebenzisi babhekiswa kwiwebhusayithi yobuxoki ukuze babambe igama eligqithisiweyo kuya kuba nzima kakhulu ukucwangcisa.
Nangona ii -apps ezininzi ezidumileyo sele zixhasa ukuqinisekiswa kwe-FIDO, ukungena kokuqala kufuna ukusetyenziswa kwegama lokugqitha phambi kokuba iFIDO imiselwe: oku kuthetha ukuba abasebenzisi basesesichengeni sohlaselo lobuqhetseba apho amagama ayimfihlo abanjwa okanye abiwa. Kodwa iinkqubo ezintsha ziya kuphelisa imfuno yokuqala yegama eliyimfihlo, utshilo uSampath Srinivas, umlawuli wolawulo lwemveliso yokuqinisekiswa okukhuselekileyo kuGoogle kunye nomongameli we-FIDO Alliance.
Iinkampani bezizama ukulahla amagama ayimfihlo iminyaka, kodwa ukufika apho akukhange kube lula. Amagama okugqithisa asebenza kakuhle ukuba made, a random, ayimfihlo, kwaye awodwa, kodwa ielementi yabantu yamagama ayimfihlo iseyingxaki.
Okokugqibela, ukuba unomdla wokwazi okungakumbi ngayo, unokujonga kwiinkcukacha Kule khonkco ilandelayo.