Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Extends Its Windows Hello Login Security Features To Apps and the Web (techcrunch.com)

Posted by BeauHD on from the the-new-standard dept.

An anonymous reader quotes a report from TechCrunch regarding the beloved Windows Hello login security features: Microsoft is bringing to Windows apps (and even the web) some of the convenience and security of being able to use the same tech it uses to keep enterprise laptops safe. The idea here is to let you use the same technology that powers "Windows Hello" -- the login security feature of Windows 10 that supports fingerprint scanners, facial recognition and even iris scanners -- to log into other services, as well. This feature probably wouldn't be all that interesting if it only worked for Windows apps, but the company is also extending it to web apps. For now, this feature apparently only works with Microsoft's own Edge browser, but the company says it is compatible with the FIDO 2.0 standard and can theoretically work with any browser.

47 comments

  1. Hello Login by Anonymous Coward · · Score: 1

    Hello Login sounds like a silly name for a cute little japanese cartoon character.

    1. Re:Hello Login by bondsbw · · Score: 1

      It's not "Hello Login", it's just "Hello".

      --
      All my liberal friends think I'm a conservative, all my conservative friends think I'm a liberal.
  2. Guilty, guilty, guilty! by shanen · · Score: 1

    One of my many problems with Microsoft is the guilty-until-proven-innocent security model. Actually, they seem to have softened their position somewhat in recent years, but the perception remains, and whenever anything goes wrong with anything associated with Microsoft, one of the hardest possibilities to rule out is that I haven't done anything they perceive as a EULA violation.

    Just a coincidence, but I ran into this last week. My employer recently announced we could upgrade to Office 2016. I wasn't brave enough to go first, but I was probably second in my section. Seemed to work okay for a couple of weeks, but then it died hard. Completely unusable. Lots of error codes leading to circular links on "support" webpages, but no discernible hint that the actual problem was a software conflict. I had to wildly guess that on the third day, but along the way there was at least one period where the software seemed to have lost its validation marbles. Some kind of ping pong between our corporate identity validation and Microsoft's? Not sure, but after I had solved the problem and thought everything was okay, I still received email with a new temporary account and password, apparently triggered during the period when the software thought it was invalid. (The attempt at recovery of the validation status must mean Microsoft now regards us as more of a major customer than a serious competitor? I think I'm sad.)

    Anyway, mostly goes to prove my point that quality of the software is much less important than the cunning of the economic model. If Linux ever came up with a good one, Microsoft would be crushed. (Then again, maybe it's too late? Vista was SUCH a great opportunity...)

    --
    Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
    1. Re:Guilty, guilty, guilty! by The+Real+Dr+John · · Score: 1

      Everything MS has been doing with Windows is on the cheap, and comes out shoddy as hell. I can't believe any companies are even thinking about migrating to the buggy new crap that offers nothing useful. Upgrades are supposed to upgrade system capabilities, not degrade them.

      --
      A brain is a terrible thing to waste... Mind? That's debatable.
  3. Apple had a chance with Vista by Joe_Dragon · · Score: 0

    Apple had a chance with Vista.

    Too bad apples hardware choice was bad and lack of games.

  4. Huh? by roninmagus · · Score: 0

    I'm smelling a rat here. I check slashdot.org multiple times a day, and there are currently 1,2,3...**5** Microsoft product update "news" stories on the homepage. What gives?

    1. Re:Huh? by kuzb · · Score: 2

      Does everything have to be a conspiracy?

      --
      BeauHD. Worst editor since kdawson.
    2. Re:Huh? by Anonymous Coward · · Score: 2

      Yes. The rules here are:
      - Apple and Google are given cautiously wide berths and acceptance because they control everything now.
      - Microsoft remains perpetually guilty until proven innocent.
      - Mozilla is to be hated no matter what they do.

      That's about the short and skinny of it. Free mod points to be had if you happen to have a standard copypasta "opinion" to share.

    3. Re:Huh? by whipslash · · Score: 4, Informative

      It's almost like Microsoft hosted an annual developers conference today an announced a bunch of news http://www.theverge.com/2016/3...

    4. Re:Huh? by Anonymous Coward · · Score: 0

      I for one welcome Mary Jo Foley, Ed Bott, and Rob Enderle as our new Slashdot moderator overlords.

    5. Re: Huh? by Anonymous Coward · · Score: 0

      'Beloved' feature? Really? How about 'ignored', 'never used', etc. Even among the few voluntary Windows 10 users I've seen nobody uses that garbage.

      For myself, I'm never giving Microsoft a biometric thing. My fingerprint readers go unused and my cameras have drivers disabled and privacy stickers over the lenses. After the deceptive forced upgrades they are not to be trusted.

      Who writes these marketing pieces masquerading as news anyway?

    6. Re:Huh? by LifesABeach · · Score: 1

      I figure its the new PHB owners. No one has told them the truth about their lap tops yet. You know, where you hold the lap top upside down and shake it to reboot it.

    7. Re:Huh? by The-Ixian · · Score: 1

      True.

      I would make one alteration:

        - Microsoft remains perpetually guilty <strike>until proven innocent</strike>

      --
      My eyes reflect the stars and a smile lights up my face.
  5. Eyyyyy! by Anonymous Coward · · Score: 1

    You go Microsoft! Jump that shark!

  6. This is a good idea... by Anonymous Coward · · Score: 0

    ... because fingerprints for passwords are also a good idea.

    I for one welcome our new biometric overlords with outstretched hands and open eyes. Please, master, RECOGNISE ME!!1!

    1. Re:This is a good idea... by Anonymous Coward · · Score: 0

      > ... because fingerprints for passwords are also a good idea.

      oh, i'm all for it. because fingerprints are attached to fingers, and fingers can be removed.

    2. Re:This is a good idea... by LifesABeach · · Score: 1

      Does anyone else not smile when in order to "open up" the operating system you have put your finger in a certain spot?

  7. Isn't this a dumb idea? by Anonymous Coward · · Score: 0

    I thought it was okay to use biometrics for identification but not for authorization. Shouldn't there still be a requirement for a password?

    1. Re:Isn't this a dumb idea? by slacklinejoe · · Score: 1

      Hello is more flexible than the above suggests and this is really just an extension of their Single Sign On options. Microsoft really wants to push the PIN + something as better than a password (that users will just put on a post-it note and leave in their office). For low security locations, sure maybe just a IR scan of your face including vein locations heartrate and such = 1 factor (Hello only works with very specific and weird cameras), but most are going to implement it with biometric (face or fingerprint) + a PIN. Which arguably is better than a password that users have on a post-it note stuck to their monitor. Once you are initially logged in, the trust factor can reasonably be established as we already have a trusted token for your login and we can re-prompt for one factor just to make sure it's still the user at the keyboard, so we just reuse that token everywhere. This ties into stuff like their SSO for Office 365, SaaS apps and has a password manager to store other non-recognized apps. Basically what UPEK was doing in the early 2000's with their fingerprint software, but hopefully more secure.

    2. Re:Isn't this a dumb idea? by Anonymous Coward · · Score: 0

      Okay. So basically a password + something that sort of works some of the time. And when it works it "shares" your biometrics (and/or biometric hash) with 3rd parties and "business partners" to "serve you better"*. Best (or worst) of both worlds, I guess.

      * Terms and conditions may change at any time.

  8. Wait, let me get this straight.... by NoNonAlphaCharsHere · · Score: 5, Insightful

    You want me to let a Microsoft browser send my "fingerprint scanners, facial recognition and even iris scanner" credentials across the open Internet as a whizzo convenience feature? (Checks calendar, nope it's only March 31)... Sure! Why not? What could possibly go wrong?

    1. Re:Wait, let me get this straight.... by Dutch+Gun · · Score: 2

      I'm sure it's just authenticating locally on your client and sending login and authentication challenge responses across the net, not the raw biometric data. MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      --
      Irony: Agile development has too much intertia to be abandoned now.
    2. Re:Wait, let me get this straight.... by chipschap · · Score: 1

      MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      Exactly so. Their programmers are not quite that stupid, so would they pass up this opportunity to collect even more personal data?

    3. Re:Wait, let me get this straight.... by Anonymous Coward · · Score: 1

      I'm sure it's just authenticating locally on your client and sending login and authentication challenge responses across the net, not the raw biometric data. MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      Ummm, you must be new here.

      And yeah, MS programmers have been that stupid - or at the least forced by management to be that stupid.

    4. Re:Wait, let me get this straight.... by Not-a-Neg · · Score: 1

      They are attempting to offer a similar service as TouchID on iOS, making it easier for n00bs to login to their stuff without needing to remember arcane passwords.

      --
      -==- Buy a Mac and leave me alone!
    5. Re:Wait, let me get this straight.... by slacklinejoe · · Score: 1

      Yeah no. It doesn't work that way.

    6. Re:Wait, let me get this straight.... by antdude · · Score: 1

      MS never jokes even on April 1st. ;P

      --
      Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
    7. Re:Wait, let me get this straight.... by Anonymous Coward · · Score: 0

      Yeah, they are. With their recent releases, I'm convinced that MS is nothing more than an Americans With Disabilities Act employment program.
      It seems like everything they make nowadays was written by retards.

    8. Re:Wait, let me get this straight.... by Anonymous Coward · · Score: 0

      Doesn't your face get sent out any time you video chat anyhow?

  9. Did I miss the memo? by grasshoppa · · Score: 1

    Are we trusting MS now? Between the "EVERYONE MUST HAVE WINDOWS 10" bs and Brad Smith saying we should let politicians decide what the balance is ( between encryption and personal freedoms ), I'm having a hard time with the whole notion that MS needs MORE of my security information, not less.

    Maybe I'm just paranoid though. My tinfoil hat is probably 3 sizes too small.

    --
    Mod me down with all of your hatred and your journey towards the dark side will be complete!
    1. Re:Did I miss the memo? by Anonymous Coward · · Score: 0

      Why not trust MS? It's not like them to chop your finger off and use that to hack your accounts. They won't need to. It'll be some punk off the street that does that.

    2. Re:Did I miss the memo? by LifesABeach · · Score: 1

      I agree, and with an A/C no less. All one need do is find a 14 bored year old to hack into any m$ stuff and life goes on.

  10. The Microsoft slashdot .. by khz6955 · · Score: 2

    Microsoft gets 6 free articles on the main page. Is this what slashdot is reduced to, shilling for the MICROS~1 organization?

    1. Re:The Microsoft slashdot .. by jenningsthecat · · Score: 2

      Microsoft gets 6 free articles on the main page. Is this what slashdot is reduced to, shilling for the MICROS~1 organization?

      Like it or not, (and I decidedly don't like it), Microsoft is still a major force in computing. So it's inevitable that sometimes a bunch of MS articles will show up in one place at one time, like a cancer cluster that turns out to be just a statistical anomaly.

      Please believe me when I say that I understand and feel what you're saying. But shouldn't we give the new Slashdot owners the benefit of the doubt until such time as shilling articles have been a consistent theme for 6 months or so? They haven't been at the helm for that long - cut'em some slack!

      --
      'The Economy' is a giant Ponzi scheme whose most pitiable suckers are the youngest among us and the yet-unborn.
    2. Re:The Microsoft slashdot .. by Anonymous Coward · · Score: 0

      I smell a rat too. The post smells like public relations copy "convenience" WTF? to me and compared to what else is going on in the tech world what they are reporting is unremarkable .

      Are there laws against this? Shouldn't this say ADVERTISEMENT?

    3. Re:The Microsoft slashdot .. by Anonymous Coward · · Score: 0

      Heaven forbid a large tech company hosting a developer conference where they announce a bunch of new products gets articles on a technology focused website.

    4. Re:The Microsoft slashdot .. by Not-a-Neg · · Score: 1

      Microsoft is holding their Build conference, expect more articles.

      --
      -==- Buy a Mac and leave me alone!
  11. Be nice with some device support by reemul · · Score: 4, Insightful

    I'm still waiting for someone to sell me a webcam that will work with Hello. There are a tiny number of laptops and tablets with one built in, but despite the technology being announced more than two years ago, there isn't a single stand alone camera that supports it. Supposedly Razer will be offering one in Q2, but no firm date. It doesn't really matter what apps the feature will unlock if no-one has the hardware to ever use it.

    --
    You're just jealous 'cuz the voices talk to *me*
    1. Re:Be nice with some device support by slacklinejoe · · Score: 1

      There are two of the Intel ones on the market as add-ons, but not many are integrated. You have to find the ones with the Intel RealSense feature. If you want, check out the Creative labs F200. There is the Intel developer kit (R200) but I've not found it in stock.

    2. Re:Be nice with some device support by Brian+Kendig · · Score: 1

      I was coming here to say the same thing, too.

      I can't find any place that sells the Creative Labs F200 - not even http://us.creative.com/p/web-cameras itself.

  12. Microsoft + Windows + Security + Features? Danger! by Anonymous Coward · · Score: 0

    Microsoft + Windows + Security + Features - what can go wrong with that?

    How can anyone talk about "Microsoft and security" makes no sense. Microsoft only exist because so many got sucked into this cesspool long time ago.

    Windows 10 in corporate environment? Your CTO is obviously damaged beyond any hope for recovery.

  13. What is this? by Anonymous Coward · · Score: 0

    Slashdot has become a propaganda outlet for Microsoft. We are getting two or three pieces of news on Microsoft every day, and I, for one, am getting fed up. If this carries on it will be bye-bye Slashdot.

  14. Yeah, right ... by gstoddart · · Score: 2

    the login security feature of Windows 10 that supports fingerprint scanners, facial recognition and even iris scanners

    Given Microsoft's history with being utterly incompetent at security, why would I trust them, or any other vendor, with biometric information? Why would I want a fucking app or a web page to have access to that stuff?

    I'm sorry, but I neither believe this is any more secure, nor do I believe this isn't going to lead to huge unintended privacy violations or whatever damned server Microsoft keeps this shit on from either being hacked, or subpoenaed by big brother.

    Sorry, but I'll pass on this shit. It serves no value for apps and web pages, and it's being offered by a company who I simply don't trust with the information or the implementation.

    When this gets hacked, expect me to be quite loudly laughing and pointing.

    --
    Lost at C:>. Found at C.
    1. Re:Yeah, right ... by The-Ixian · · Score: 1

      It is clear to me that what MS is actually doing is attempting to subvert Android (and to some extent iOS) to their own purposes.

      MS is introducing low level apps on both platforms which make it easier to turn either device into a MS platform. For example, I have a work issued iPad and there are more MS apps on it than Apple apps.

      I think this is a smart thing for MS to do; A way of hedging their bets. If Windows users cannot have their own platform, MS enables them to have something very similar on a different OS. This is especially true for Android. As a matter of fact, I know that MS has deals with some Android manufacturers to embed MS apps.

      I love Windows mobile and continue to run Win10 on my Lumia 920 but some day in the not-too-distant future the platform will truly be dead. When that happens, at least I know I can go to Android and get most of the same experience, especially if I replace the launcher.

      --
      My eyes reflect the stars and a smile lights up my face.
  15. "beloved"??? by davidwr · · Score: 1

    If that doesn't scream "slashvertisedment" I don't know what does.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  16. Microsoft by EuniceNyandat · · Score: 1

    Security