| Font Size |
The firm's security experts including an Indian are set to publish their findings next month, the 'Daily Mail' reported.
In the upcoming issue of IEEE Security & Privacy Magazine, Google Vice President of Security Eric Grosse and engineer Mayank Upadhyay will detail what is basically a physical key with a 'smart chip' embedded inside it.
"Along with many in the industry, we feel passwords and simple bearer tokens such as cookies are no longer sufficient to keep users safe," the pair write in their paper, according to Wired.
To log, users simply place the tiny Universal Serial Bus (USB) drive into their computer.
The firm is also believed to be experimenting with wireless chips that are already built into some mobile phones, and can even be built in jewelry.
"We'd like your smartphone or smartcard-embedded finger ring to authorise a new computer via a tap on the computer, even in situations in which your phone might be without cellular connectivity," the team writes.
"One option uses a tiny USB key called a YubiKey. When the user plugs the key into a latop, they are automatically logged into all of their Google accounts - without ever having to type in a password," they explain.
"Another option uses a 'smartcard-embedded finger ring to authorise a new computer via a tap on the computer," they said.
The firm is also believed to be addressing the obvious problem with the system users losing their 'key' and is thought to be developing a simple system to replace them.
However, the pair admit that they will have to rely on websites to support the scheme.
"Others have tried similar approaches but achieved little success in the consumer world," they write.
"Although we recognise that our initiative will likewise remain speculative until we've proven large scale acceptance, we're eager to test it with other websites," they say.
If the device wl like ATM Card nd pin to that device it will be more safer.. and if device wl lost it can be blocked .. and its nt possibe of retina scan to everyone's pc...
this sounds really like a naive and abssurd idea to me. why would i would do that . in that case any one can log in to my account just by posseing it. i hope google doesnt do that
Now, all people have to do is still the physical key (jewelery) and you have access to that persons accounts. Bad idea!! Conventional way of username/password nothing can beat that. Unless you want to go with biometric access denial system (finger print + retina scan) Finger print can easily be got from the things you touch, retina scan is much safer.
So what if someone gets hold of your 'physical key' or the same is misplaced? Are they proposing no logging in if by chance one doesn't carry this key? The idea itself seems to be quite absurd.
