Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Extends Its Windows Hello Login Security Features To Apps and the Web (techcrunch.com)

Posted by BeauHD on from the the-new-standard dept.

An anonymous reader quotes a report from TechCrunch regarding the beloved Windows Hello login security features: Microsoft is bringing to Windows apps (and even the web) some of the convenience and security of being able to use the same tech it uses to keep enterprise laptops safe. The idea here is to let you use the same technology that powers "Windows Hello" -- the login security feature of Windows 10 that supports fingerprint scanners, facial recognition and even iris scanners -- to log into other services, as well. This feature probably wouldn't be all that interesting if it only worked for Windows apps, but the company is also extending it to web apps. For now, this feature apparently only works with Microsoft's own Edge browser, but the company says it is compatible with the FIDO 2.0 standard and can theoretically work with any browser.

31 of 47 comments (clear)

  1. Hello Login by Anonymous Coward · · Score: 1

    Hello Login sounds like a silly name for a cute little japanese cartoon character.

    1. Re:Hello Login by bondsbw · · Score: 1

      It's not "Hello Login", it's just "Hello".

      --
      All my liberal friends think I'm a conservative, all my conservative friends think I'm a liberal.
  2. Guilty, guilty, guilty! by shanen · · Score: 1

    One of my many problems with Microsoft is the guilty-until-proven-innocent security model. Actually, they seem to have softened their position somewhat in recent years, but the perception remains, and whenever anything goes wrong with anything associated with Microsoft, one of the hardest possibilities to rule out is that I haven't done anything they perceive as a EULA violation.

    Just a coincidence, but I ran into this last week. My employer recently announced we could upgrade to Office 2016. I wasn't brave enough to go first, but I was probably second in my section. Seemed to work okay for a couple of weeks, but then it died hard. Completely unusable. Lots of error codes leading to circular links on "support" webpages, but no discernible hint that the actual problem was a software conflict. I had to wildly guess that on the third day, but along the way there was at least one period where the software seemed to have lost its validation marbles. Some kind of ping pong between our corporate identity validation and Microsoft's? Not sure, but after I had solved the problem and thought everything was okay, I still received email with a new temporary account and password, apparently triggered during the period when the software thought it was invalid. (The attempt at recovery of the validation status must mean Microsoft now regards us as more of a major customer than a serious competitor? I think I'm sad.)

    Anyway, mostly goes to prove my point that quality of the software is much less important than the cunning of the economic model. If Linux ever came up with a good one, Microsoft would be crushed. (Then again, maybe it's too late? Vista was SUCH a great opportunity...)

    --
    Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
    1. Re:Guilty, guilty, guilty! by The+Real+Dr+John · · Score: 1

      Everything MS has been doing with Windows is on the cheap, and comes out shoddy as hell. I can't believe any companies are even thinking about migrating to the buggy new crap that offers nothing useful. Upgrades are supposed to upgrade system capabilities, not degrade them.

      --
      A brain is a terrible thing to waste... Mind? That's debatable.
  3. Re:Huh? by kuzb · · Score: 2

    Does everything have to be a conspiracy?

    --
    BeauHD. Worst editor since kdawson.
  4. Re:Huh? by Anonymous Coward · · Score: 2

    Yes. The rules here are:
    - Apple and Google are given cautiously wide berths and acceptance because they control everything now.
    - Microsoft remains perpetually guilty until proven innocent.
    - Mozilla is to be hated no matter what they do.

    That's about the short and skinny of it. Free mod points to be had if you happen to have a standard copypasta "opinion" to share.

  5. Re:Huh? by whipslash · · Score: 4, Informative

    It's almost like Microsoft hosted an annual developers conference today an announced a bunch of news http://www.theverge.com/2016/3...

  6. Eyyyyy! by Anonymous Coward · · Score: 1

    You go Microsoft! Jump that shark!

  7. Wait, let me get this straight.... by NoNonAlphaCharsHere · · Score: 5, Insightful

    You want me to let a Microsoft browser send my "fingerprint scanners, facial recognition and even iris scanner" credentials across the open Internet as a whizzo convenience feature? (Checks calendar, nope it's only March 31)... Sure! Why not? What could possibly go wrong?

    1. Re:Wait, let me get this straight.... by Dutch+Gun · · Score: 2

      I'm sure it's just authenticating locally on your client and sending login and authentication challenge responses across the net, not the raw biometric data. MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      --
      Irony: Agile development has too much intertia to be abandoned now.
    2. Re:Wait, let me get this straight.... by chipschap · · Score: 1

      MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      Exactly so. Their programmers are not quite that stupid, so would they pass up this opportunity to collect even more personal data?

    3. Re:Wait, let me get this straight.... by Anonymous Coward · · Score: 1

      I'm sure it's just authenticating locally on your client and sending login and authentication challenge responses across the net, not the raw biometric data. MS is a lot of things, but I'd have to think that their programmers are not quite that stupid.

      Ummm, you must be new here.

      And yeah, MS programmers have been that stupid - or at the least forced by management to be that stupid.

    4. Re:Wait, let me get this straight.... by Not-a-Neg · · Score: 1

      They are attempting to offer a similar service as TouchID on iOS, making it easier for n00bs to login to their stuff without needing to remember arcane passwords.

      --
      -==- Buy a Mac and leave me alone!
    5. Re:Wait, let me get this straight.... by slacklinejoe · · Score: 1

      Yeah no. It doesn't work that way.

    6. Re:Wait, let me get this straight.... by antdude · · Score: 1

      MS never jokes even on April 1st. ;P

      --
      Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
  8. Did I miss the memo? by grasshoppa · · Score: 1

    Are we trusting MS now? Between the "EVERYONE MUST HAVE WINDOWS 10" bs and Brad Smith saying we should let politicians decide what the balance is ( between encryption and personal freedoms ), I'm having a hard time with the whole notion that MS needs MORE of my security information, not less.

    Maybe I'm just paranoid though. My tinfoil hat is probably 3 sizes too small.

    --
    Mod me down with all of your hatred and your journey towards the dark side will be complete!
    1. Re:Did I miss the memo? by LifesABeach · · Score: 1

      I agree, and with an A/C no less. All one need do is find a 14 bored year old to hack into any m$ stuff and life goes on.

  9. The Microsoft slashdot .. by khz6955 · · Score: 2

    Microsoft gets 6 free articles on the main page. Is this what slashdot is reduced to, shilling for the MICROS~1 organization?

    1. Re:The Microsoft slashdot .. by jenningsthecat · · Score: 2

      Microsoft gets 6 free articles on the main page. Is this what slashdot is reduced to, shilling for the MICROS~1 organization?

      Like it or not, (and I decidedly don't like it), Microsoft is still a major force in computing. So it's inevitable that sometimes a bunch of MS articles will show up in one place at one time, like a cancer cluster that turns out to be just a statistical anomaly.

      Please believe me when I say that I understand and feel what you're saying. But shouldn't we give the new Slashdot owners the benefit of the doubt until such time as shilling articles have been a consistent theme for 6 months or so? They haven't been at the helm for that long - cut'em some slack!

      --
      'The Economy' is a giant Ponzi scheme whose most pitiable suckers are the youngest among us and the yet-unborn.
    2. Re:The Microsoft slashdot .. by Not-a-Neg · · Score: 1

      Microsoft is holding their Build conference, expect more articles.

      --
      -==- Buy a Mac and leave me alone!
  10. Be nice with some device support by reemul · · Score: 4, Insightful

    I'm still waiting for someone to sell me a webcam that will work with Hello. There are a tiny number of laptops and tablets with one built in, but despite the technology being announced more than two years ago, there isn't a single stand alone camera that supports it. Supposedly Razer will be offering one in Q2, but no firm date. It doesn't really matter what apps the feature will unlock if no-one has the hardware to ever use it.

    --
    You're just jealous 'cuz the voices talk to *me*
    1. Re:Be nice with some device support by slacklinejoe · · Score: 1

      There are two of the Intel ones on the market as add-ons, but not many are integrated. You have to find the ones with the Intel RealSense feature. If you want, check out the Creative labs F200. There is the Intel developer kit (R200) but I've not found it in stock.

    2. Re:Be nice with some device support by Brian+Kendig · · Score: 1

      I was coming here to say the same thing, too.

      I can't find any place that sells the Creative Labs F200 - not even http://us.creative.com/p/web-cameras itself.

  11. Re:Huh? by LifesABeach · · Score: 1

    I figure its the new PHB owners. No one has told them the truth about their lap tops yet. You know, where you hold the lap top upside down and shake it to reboot it.

  12. Re:This is a good idea... by LifesABeach · · Score: 1

    Does anyone else not smile when in order to "open up" the operating system you have put your finger in a certain spot?

  13. Re:Isn't this a dumb idea? by slacklinejoe · · Score: 1

    Hello is more flexible than the above suggests and this is really just an extension of their Single Sign On options. Microsoft really wants to push the PIN + something as better than a password (that users will just put on a post-it note and leave in their office). For low security locations, sure maybe just a IR scan of your face including vein locations heartrate and such = 1 factor (Hello only works with very specific and weird cameras), but most are going to implement it with biometric (face or fingerprint) + a PIN. Which arguably is better than a password that users have on a post-it note stuck to their monitor. Once you are initially logged in, the trust factor can reasonably be established as we already have a trusted token for your login and we can re-prompt for one factor just to make sure it's still the user at the keyboard, so we just reuse that token everywhere. This ties into stuff like their SSO for Office 365, SaaS apps and has a password manager to store other non-recognized apps. Basically what UPEK was doing in the early 2000's with their fingerprint software, but hopefully more secure.

  14. Yeah, right ... by gstoddart · · Score: 2

    the login security feature of Windows 10 that supports fingerprint scanners, facial recognition and even iris scanners

    Given Microsoft's history with being utterly incompetent at security, why would I trust them, or any other vendor, with biometric information? Why would I want a fucking app or a web page to have access to that stuff?

    I'm sorry, but I neither believe this is any more secure, nor do I believe this isn't going to lead to huge unintended privacy violations or whatever damned server Microsoft keeps this shit on from either being hacked, or subpoenaed by big brother.

    Sorry, but I'll pass on this shit. It serves no value for apps and web pages, and it's being offered by a company who I simply don't trust with the information or the implementation.

    When this gets hacked, expect me to be quite loudly laughing and pointing.

    --
    Lost at C:>. Found at C.
    1. Re:Yeah, right ... by The-Ixian · · Score: 1

      It is clear to me that what MS is actually doing is attempting to subvert Android (and to some extent iOS) to their own purposes.

      MS is introducing low level apps on both platforms which make it easier to turn either device into a MS platform. For example, I have a work issued iPad and there are more MS apps on it than Apple apps.

      I think this is a smart thing for MS to do; A way of hedging their bets. If Windows users cannot have their own platform, MS enables them to have something very similar on a different OS. This is especially true for Android. As a matter of fact, I know that MS has deals with some Android manufacturers to embed MS apps.

      I love Windows mobile and continue to run Win10 on my Lumia 920 but some day in the not-too-distant future the platform will truly be dead. When that happens, at least I know I can go to Android and get most of the same experience, especially if I replace the launcher.

      --
      My eyes reflect the stars and a smile lights up my face.
  15. "beloved"??? by davidwr · · Score: 1

    If that doesn't scream "slashvertisedment" I don't know what does.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  16. Re:Huh? by The-Ixian · · Score: 1

    True.

    I would make one alteration:

      - Microsoft remains perpetually guilty <strike>until proven innocent</strike>

    --
    My eyes reflect the stars and a smile lights up my face.
  17. Microsoft by EuniceNyandat · · Score: 1

    Security