By Alan Rita
Forgot password? Password resets often make up the bulk of calls to the support center. If this is the case for your customers, or you want to avoid it altogether, Facebook has a solution exactly for you. Through Delegated Account Recovery, it is able to act as a backup security key for its partner online services.
Say, users cannot recall their login credentials for your site or app. CNN says they “will instead use Facebook to verify you are who [they] say [they] are. They will have to prove [themselves] through exercises like recognizing friends’ photos in order to log into [their] other account.” It is called social sign-in, and it is a plan to eliminate traditional passwords for good.
Other Works In Progress
It is not just Facebook that plotted to kill the password. Last year, Google introduced the Trust API under Project Abacus, and it will rely heavily on behavioral indicators to determine whether it’s the user that’s really holding their phone. The Independent reports that it will analyze factors such as the owner’s face, voice, and location, as well as how they type, swipe, and move. Google believes it will be 10 times more secure than a fingerprint scan because it combines all these variables.
Speaking of fingerprint scans, as well as iris and voice scans, they already exist on your customers’ beloved smartphones. The Samsung Galaxy S5, launched in 2014, had a fingerprint reader that let users log into online services via a fingerprint. The feature was set into motion by an industry consortium led by the likes of PayPal and Lenovo called the FIDO Alliance. Fido provides implementation specs and certifications to groups in pursuit of creating strong authentication systems.
And it is where we are now. We have devices equipped with sensors to detect fingerprints, irises, and voice prints. If your customers have any of these, then they have a higher chance of controlling access to their online accounts.
On the other hand, you may be unable to implement all of them at the same time — and you still have to wait for Google to complete its Trust API project. You may be able to roll out one of the three options and pick the most cost-efficient for your business. And, say, you succeed in the implementation stage, the next challenge will be the number of customers possessing a smartphone or tablet that allows them to log in through your chosen biometric method.
Current Solution: Social Sign-In
Here is where social sign-in enters.
With social sign-in, customers can complete the registration process for online services by allowing their social network profiles to be imported to the latter. We can say their social network identities are transferable to a degree. And the partner sites and apps to the social platforms can identify and verify them through their existing Facebook or Twitter accounts. We already have an idea how this works using Facebook.
Source:: Business 2 Community