Support the fact-based journalism you rely on with a donation to Marketplace today. Give Now!

Is two-factor authentication the death of the password?

Queena Kim May 23, 2013
HTML EMBED:
COPY

Is two-factor authentication the death of the password?

Queena Kim May 23, 2013
HTML EMBED:
COPY

Remember the AP Twitter hack about a month ago? The stock market took a deep dive — for a little bit — in response to the fake “tweet” that the White House had been attacked?

Well, it hadn’t been, as we know. And we also know that these kinds of security breaches are pretty commonplace. Today, Twitter announced it’s offering two-factor authentication. For users who opt-in, your password won’t be enough to get you into your account.

And this has got people saying that we might be seeing the beginning of the end of the password. The problem with passwords is human error and having to remember so many of them, says Dug Song, the CEO of Duo Security. He says — despite repeated warnings — people use easy passwords over multiple sites. “And so the realization has been that there has to be something strong to protect those accounts,” Song said.

So tech companies are trying to  get rid of the password. Facebook’s experimenting with asking you to ID photos of your friends, said Doug Tyger,  a computer science professor at U.C. Berkeley.

“Other people have proposed using biometrics, which would depend on measuring  cornea scan or a handprint or one of colleagues here has proposed using brainwaves!” Tyger said.

Authentication, in computer speak, is simply proving you are who you say you are. Right now, we do this by using a password. He says, if you sign up for Twitter’s new service, it’ll require a second verification. “You get an SMS message on your cell phone and it’ll have a six digit code and you have to enter it to authenticate yourself,” he said.

Paypal and lots of “financial institutions” are already making similar services available. Alex Salazar,  the CEO of the digital security-company Stormpath, says despite these efforts, the password isn’t going anywhere anytime soon. “Many of these other forms of authentication that people are experimenting with require an extra step, two or three, and you don’t see a lot of appetite from consumers,” he said.

Salazar says until technology makes it as simple as punching 1-2-3-4 into Netflix account, most consumers won’t make the switch.

There’s a lot happening in the world.  Through it all, Marketplace is here for you. 

You rely on Marketplace to break down the world’s events and tell you how it affects you in a fact-based, approachable way. We rely on your financial support to keep making that possible. 

Your donation today powers the independent journalism that you rely on. For just $5/month, you can help sustain Marketplace so we can keep reporting on the things that matter to you.