If you want to sign in on a web service currently you have to provide username and password to do so. This is neither convenient nor overly secure, considering that the server you communicate with has to store username and a hashed password for that.
Microsoft envisions Passport to change that by allowing users to sign in to applications and web services without passwords.
The system uses asymetric cryptography for that which uses key-pairs for authentication. The private key is stored on the device while the public key is used by applications and services for challenge-response authentication.
Passport uses Windows Hello, another new authentication service introduced in Windows 10 by Microsoft.
Windows Hello enables users of the operating system to sign in on the system using biometric information. The current version supports face recognition, iris scans and fingerprint scans for authentication.
According to Microsoft, there will be a fallback in place if the device that is being used does not support any of the biometric authentication features (which is the case if it has no cam or fingerprint reader).
This fallback uses a pin-based system for authentication which comes down to entering the pin to enable and use Microsoft Passport on a device.
So, what is positive about Microsoft Passport?
What are the concerns?
Now You: What's your take on Microsoft Passport?Advertisement
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.