Passwordless Login

The Way Forward?

Posted on February 16, 2019 in info

One of the many features of prepare.zone is the passwordless login system, which allows registered users to enter the site with an emailed token. Is that really a big beef? You bet it is!

We are expected to create and maintain both usernames and passwords for a bewildering number of sites. True, you can tailor your password based on how often will you access a website, how valuable and sensitive is the information about me that will be stored in this website, and whether you really want to remember “yet another password” (sometimes known as YAP) so should you use an existing one, but even then, it still means having – and trying to remember - quite a lot of passwords.

China’s Internet population has the now hit around 485 million users, so the cumulative number of usernames and passwords on the Internet is growing exponentially. Some studies have reported that as many as 25% of Internet users have reported their account or password stolen, which this means that up to 100 million users in China alone have been or will be hacked this year. While that might seems fantastical, it is likely to be close to the truth, and that is quite worrying.

The reasons behind this are simply that people are very lax when it comes to passwords and tend to choose either the same ones or small variations of them. Prepare.zone side-steps this issue by using a passwordless login system where the registered user requests access and is sent a link to their email account. Clicking the link takes them to their accessible area.

To make this whole system work, the application – in this case prepare.zone - creates a random, one-time password, and sends it to the user whenever they need to gain access. It’s a similar process to resetting your password over the internet, which many users do every login anyway! An email account is an obvious choice, but any other messaging service can be used. These can includes SMS, Skype, instant messaging systems or even Twitter directs messages. Multiple options could be offered if you do not want to rely on a single system for complete security, and even a two-system login – such as an email link and a SMS message could be used.

But why is this any safer than having log in credentials? Well, for one, people tend to protect their email passwords much more stringently than they would something casual such as a travel review website or a newspaper access one, so they usually have a more secure password.

With many projects having a significant financial value which needs to be protected from outside intrusion. In having that level of security prepare.zone gives user reassurance that their data is secure and cannot be accessed by unauthorized people. The best way to do that is by having a passwordless access system connected to a secure email address.