Google Chrome will now generate unique passwords for you
The ever-popular browser Google Chrome turned 10 years old this month, and with that anniversary the Google team announced a bevy of new changes in the latest release – from a new look to behind-the-scenes functionality tweaks.
We’re most interested in the security-related update that the new version of Chrome now offers: an in-browser Chrome-native password generator and manager.
Yes, Google products have been offering to store passwords for their users for some time now via Google Password Vault – and for that matter, most browsers have been offering their own native password manager features too (in addition to the many third-party password managers that integrate into the browser of your choice).
Combined password manager and generator
The new wrinkle here is that Chrome will now generate a unique password for the user as a part of the everyday credential creation process.
That generated password will be stored in the cloud-based Google Password Vault, meaning it will be available to that same logged-in Chrome user across their devices.
Chrome is by no means the only browser with this capability. We’ve previously covered how Apple’s Safari browser will be offering similar functionality in the upcoming iOS 12 release, which should be out this month.
So it seems like in-browser password management and generation are well on their way, if not already here. Hooray, right?
Generally speaking, the fewer barriers between users and the creation of more secure, unique passwords, the better. However, depending on your point of view, there may be caveats.
For those who already have the desire and ability to use a password manager the fundamental question is whether or not they will prefer to entrust their passwords to a massive company like Google or Apple, a third-party password manager like 1Password or LastPass, or use a homegrown solution, like a personal algorithm.
There’s certainly an argument for keeping passwords out of the cloud, a browser, or a big company that already knows a ton about you, like Google or Apple. Putting all your browsing and password information in one place may be a risk that not everyone wants to take – not everyone wants all their eggs in Google’s basket, so to speak.
And certainly, there are many people that never want their password vault stored on the internet, regardless if it’s via a browser password manager or a cloud app. For those folks, an in-browser password generator and manager understandably holds little appeal.
A convenient tool?
On the other hand, though many of us know what good password hygiene is, why it matters, and how to use a password manager, there are just as many – if not more – who don’t.
Then there are those who know it is important, but still don’t bother with it – a refrain we often hear is that people know strong, unique passwords matter, but it’s such a pain to find yet another piece of tech to help with this (let alone set it up and learn to use it).
In this case, a built-in password generator and manager within the browser offers a distinct advantage: Most people are very comfortable with how their browser works, and if the browser offers oh-so-helpfully to take care of yet another internet annoyance (making and remembering all those pesky passwords), it’s one less thing to worry about.
What do you think? Does an in-browser password generator and browser appeal to you? If you’re a Chrome user, will you be using Google’s password vault or are you sticking to a different option?
Source nakedsecurity
Latest Jobs
-
- InfoSec Analyst | London | Financial Services | Hybrid
- London
- N/A
-
InfoSec Analyst | London | Financial Services | Hybrid Governance Risk & Compliance InfoSec Analyst needed to join a Financial Services business in London. This is an internal role- prior experience working within a regulated Financial service environment is essential. Duties of the role will include, but not be limited to; ISMS management / policy enhancement Risk management Data privacy Liaising with internal stakeholders / external suppliers ISO27001 experience is essential- as is previous Financial Service. We aren't badge hunting- but the likes of CISSP, CISM etc are always desirable. Must be commutable to London. Not able to offer sponsorship Exclusive to DCL Search. Apply here today Click to chat via whatsapp https://wa.me/message/6USF5RAQBOZIP1 chris.holt@dclsearch.com 07884666351
-
- Data Privacy Lead. Client Facing London. Permanent.
- London
- N/A
-
Data Privacy Lead. Client Facing London. Permanent. London based client facing. Must be eligible to undergo UK Security Clearance (SC) Key Responsibilities: Lead and support client facing data privacy projects. Assess compliance, define and deliver strategic projects / implement privacy solutions. Manage project teams and develop business opportunities. Required Experience: Experience in data protection and privacy standards. Background in consulting. Skills and Qualifications: Business consulting experience IAPPPrivacy Manager / Privacy Technologist Location Greater London UK based role. Not able to provide VISA sponsorship.
-
- VOIP / SIP App Developer. Contract. SIP | VOIP experience needed. SC Cleared Outside IR35 Contract. London
- London
- OUTSIDE IR35
-
SIP | VOIP Developer. SC Cleared Contract. London Looking for a SC Cleared SIP / VOIP Developer to develop an application that interacts with a set of voice and video signalling API’s You will also work on developing in-house applications, browser plugins and automated tooling to support secure communication systems. Responsibilities Develop an application that will manage number mapping and associated identities using commercial SBC API’s. Develop new user-facing features using React.js or other modern JavaScript frameworks. Build reusable components and front-end libraries for future use. Collaborate with the design team to translate UI/UX design wireframes into code. Work closely with backend developers to integrate front-end code with server-side logic. Conduct code reviews and provide constructive feedback to team members. Stay up-to-date on emerging technologies and industry trends to continuously improve our front-end development practices. Troubleshoot and debug issues that arise during development and in production environments. Maintain high coding standards and practices and ensure code is well-documented. Requirement Experience of developing specialist applications using REST API’s. Good knowledge of Go, Java and Python (open to alternative combinations of languages). Proficiency in front-end languages and frameworks such as HTML, CSS, JavaScript, React.js, etc. Strong understanding of web standards, responsive design, and cross-browser compatibility. Experience with version control systems such as Git. Knowledge of RESTful APIs and asynchronous request handling. Familiarity with UI/UX design principles and tools.
-
- Senior Data Privacy Consultant. Client Facing | London
- London
- N/A
-
Senior Data Privacy Consultant. Client Facing | London Senior Data Privacy Consultant needed for a key client facing opportunity. Must be willing to undergo SC Security Clearance. Hybrid role- onsite with customer / office 2-3 days a week. London Key Responsibilities: Lead and support client facing data privacy projects. Assess compliance, define and deliver strategic projects / implement privacy solutions. Manage project teams and develop business opportunities. Required Experience: Experience in data protection and privacy standards. Background in consulting. Skills and Qualifications: Business consulting experience IAPP Privacy Manager / Privacy Technologist Location Greater London UK based role. Not able to provide VISA sponsorship.