First it was Microsoft with its own way of killing the password this week and now its Facebook which means the password as we know it could soon be a thing of the past. At its just concluded F8 developer conference, Facebook launched a Delegated Account Recovery in beta which is a way Facebook can be your backup security key just in case you forget your password not only on Facebook related services but on other platforms as well.
This means that other apps or websites will ask you to allow Facebook help you recover password should you forget it any time. Speaking to CNNTech, a security engineer at Facebook Brad Hill says “We want to make sure we can let you use [identifying] information to keep yourself secure, but not have to trade your privacy….”Right now you tell your mother’s maiden name to 500 different places and if any one of them gets hacked, then you’re vulnerable everywhere.”
But this doesn’t exactly feel as if Facebook is solidly trying to eliminate the password like Microsoft and Google are rather this is Facebook saying the current password recovery methods are not safe. By getting a link in the email or a text message to reset your password, hackers could somehow lay their hands on it and eventually take over your accounts. Information you provide like first car, city of birth and your mother’s maiden name are just some of the data hackers need to get into your life.
But why would you trust Facebook with more information about your right? Well there are two billion people on Facebook and if you’re reading this, chances are you have a Facebook account and this means Facebook probably has all they need to make your password recovery process safer.
The big risk I can see here is what happens when a hacker has access to your Facebook account, this could potentially mean they can access your other accounts on other websites as well. But Facebook says it has safeguards in place against this and one of that is what Google and Microsoft already do. You will be notified if anything looks fishy like someone accessing your account from another device or location. Facebook will also limit the number of third party account recoveries you can make at any given time. Mr. Hill also said Facebook won’t request details of your third party accounts and this is supposed to deal with any reservations you may have about this. So for example Facebook won’t know your account details and other activity on another service rather they’ll just serve as security connection between you and that account.
Like I said at the beginning, this is in beta and developers must go through Facebook’s registration process to use this and since it is open sourced, any company can use it.
Banks in Nigeria and other emerging economies already allow users open accounts directly on Facebook so as to attract more users from the 2 billion strong community. So organisations like this can try get more people to change their security details in future from the comfort of their phones.
Paul Balo is the founder of TechBooky and a highly skilled wireless communications professional with a strong background in cloud computing, offering extensive experience in designing, implementing, and managing wireless communication systems.
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
