Blog

Rahul Thadani
Your Passwords Are on the Way Out, Leave it to Twitter
October 29, 2014

If there is one thing we could change about the Internet today, it would most certainly be the dissolution of the need for passwords to access web-based accounts. An average Internet user today has around 10 passwords that he needs to remember at all times. Moreover, these passwords need to be unique, hard to remember and mutually exclusive.

digits_two_step_verification

However, as most people can vouch for, a majority of users do not follow these rules. Remembering 10 different passwords with a mix of special characters, numbers and the like is a highly demanding ritual. What this leads to is a situation wherein people use the same password, or some variant, for their multiple accounts. This leaves them vulnerable to hack attacks and social engineering tricks.
With all the advances that the tech world has seen recently, it is surprising that we still rely on something as archaic as a password to access our personal accounts. It’s about time we saw some changes here and thankfully, steps are being taken in order to rectify this outdated conception.

Twitter starts the countdown for Digits

“Digits” is a new development tool offered by Twitter that allows people to sign in to their apps using their mobile numbers, and thankfully this has nothing to do with passwords. With the help of Digits, an API developer can enable an end user to receive a one-time authentication code on his mobile phone every time he wishes to login. Embedded within Twitter Fabrics, Digits is a standalone tool that can be used by developers to make their apps safer, better and more lucrative.

digits_confirmation_code

Sure this may sound a bit tedious, but the benefits are easy to see. A user will never need to remember his password. Instead, he will simply punch in the authentication code that he receives on his phone. The 4 stages of this process are as follows:

  • Choose the login via mobile option.
  • Enter your phone number.
  • View the authentication code that will be sent via SMS.
  • Enter that code and you’re done.

Admittedly, certain drawbacks do exist. First and foremost, if one loses their phone then the repercussions could be as bad as handing over the keys to your house to a burglar. Secondly, some apps may store phone numbers of all their users and these could be shared with ad repositories and other malicious attackers. Lastly, if one enters a no-network zone, access to web accounts could be lost. So there is still some way to go before this technique is perfected. But this is certainly a step in the right direction. You can learn more about Digits here and here.

As always, we want to know what you think. Are passwords proving to be a hindrance to your online activities? Do you think getting rid of them is a good idea?

SHARE THIS STORY

Have something to add to this story? Share it in the comments.

Rahul Thadani
About Rahul Thadani
Rahul is a web enthusiast and blogger, and has been writing about the computer security industry for the last three years. Following the latest technology trends,...
Articles by Rahul Thadani »

43 Comments

Your email address will not be published.

CAPTCHA Image

  1. kaise use kare ?
    how to use Twitter passward hack/chak

    Reply
    • Hi Navnit,

      This feature cannot be used directly by end users or account holders. A service provider or app developer like Twitter will need to make use of this technology for their product. Only then will we see it reach everybody.

      Regards.

      Reply
  2. Amitava MannaOctober 29, 2014 at 8:11 PM

    Back to the same square! Same problem via a different route–unless I am mistaken in my judgment. God alone is the security. Man can never vouch security. The strongest vault can be broken, the most inert can be burnt…fill up the rest yourself.

    Reply
  3. Sangeet Kr GuptaOctober 29, 2014 at 9:07 PM

    Excellent idea,
    infact we are using a similar idea for our ERP access from the mobile phones and other hand held devices
    Sangeet Gupta
    Finsys ERP
    India

    Reply
  4. Surajit MajumderOctober 29, 2014 at 9:33 PM

    how can i do this……? Plz help me…!!!

    Reply
    • Hi Surajit,

      This feature cannot be used directly by end users or account holders. A service provider or app developer like Twitter will need to make use of this technology for their product. Only then will we see it reach everybody.

      Regards.

      Reply
  5. K V S MURTHYOctober 30, 2014 at 6:40 AM

    Today (30/10/2014)morning I paid the amount for renew of my PC for one year amounting to Rs.1364/- but still my comp. shows Renew now.What happened.

    Pl. clarify.

    Thanks & Regards
    K.V.S.Murthy
    VISAKHAPATNAM
    Andhrapradesh
    INDIA
    7893677399

    Reply
    • Hi Mr. Murthy,

      Since you have made the payment you need not worry. Your product will show that it has been renewed soon. In case this does not appear soon, please contact our technical support team as it could be due to a technical glitch. You can contact them on 0-927-22-33-000 or submit a ticket by visiting this link – http://www.quickheal.co.in/submitticket.

      Regards.

      Reply
  6. Sandeep chopraOctober 30, 2014 at 10:44 AM

    5 star app

    Reply
  7. I have windows laptop& android samsung phone.quickheal antivirous have been installed on both. Which is safer for banking ?

    Reply
    • Hi Mr. Bhandari,

      Out of these 2 platforms, we recommend that your laptop is the safer bet for banking activities. Android is a hugely popular platform, but it is also common for malware and attackers to target Android. Banking over smartphones is still in its nascent stage, so it is best to avoid it when possible.

      Regards.

      Reply
  8. Maruti ChavanOctober 30, 2014 at 11:49 AM

    Hi All,

    I really feel it is very good and best idea. infact i was daily thinking about getting rid of these password remembering process. Now its really good, OTP is one of the best way to use secured online activities.

    Reply
  9. Haradhan MohajanOctober 30, 2014 at 2:22 PM

    Many thanks.

    Reply
  10. Make it simple

    Reply
  11. hiii

    my question is this my intenet is connect my laptop but not update my quickheal antivirus plz help me

    Reply
  12. good work

    Reply
  13. And what about those poor souls who do not choose to have Twitter or Facebook Accounts ???
    I have never had a problem remembering my Passwords, and I only need three for all my electronic activities. Ten digits/symbols/case sensitive/non-logical progression seems quite safe to me !!

    Reply
  14. Thanks a lot for the information. I do believe that the putting passwords for log in is a primitive concept now. I believe, option of passwords and log in via phone both the options should be available. Moreover, there should be an option of putting the phone number if the user needs. This will be important if someone’s phone has been stolen or it is lost. However, this secondary number should be with the website as a back up number.

    Reply
  15. Ranjan ChakrabortyOctober 31, 2014 at 10:50 PM

    Hi, I do not have any Twitter account, how can I see the password to install Quick Heal??

    Reply
  16. Mithilesh SinghOctober 31, 2014 at 11:25 PM

    This is awesome !

    Reply
  17. I am installing the quickheal total security. my registration is activated successfully. the license expiry date is displayed. but when i click the icon it show “protection is out of date”. why?

    Reply
    • Hi Sanjay,

      Please try the following troubleshooting steps:

      1. On your Quick Heal dashboard, click the Update Now button

      1. Go to Help
      2. Click About
      3. Click License Details
      4. Click Update License Details
      5. Click Continue


      If the problem still persists, please get in touch with our our support team at 0-927-22-33-000.

      You can also submit your query at http://www.quickheal.com/submitticket.asp. Our support team will get back to you to resolve the issue you are facing.

      Regards,

      Reply
  18. A very warm thanks to determine us.

    Reply
  19. Sushanta SenguptaNovember 1, 2014 at 12:22 PM

    Complicated to use.

    Reply
  20. hi Rahul… keep keeping up d good work (Y)

    Reply
  21. Quick Heal is the best

    Reply
  22. Dhaval koriNovember 2, 2014 at 1:08 PM

    where a product key?? , where i found??

    Reply
    • Hi Dhaval,

      If you are trying to find the lost Product Key of your Quick Heal product, please get in touch with our support team at 0-927-22-33-000.They will provide you with a solution.

      Regards,

      Reply
  23. How can i leave my passwords to twitter ? means i have to create a twitter account or what? please tell me exactly what i have to do..

    Reply
    • Hi Ranjita,

      This technology is still under development by Twitter, so there is nothing that you have to do right now. Also, you will not have to leave your passwords to Twitter. The blog is talking about how Twitter has devised a technology that replaces passwords for their accounts. This technology will be available to other developers as well and they can use it for their accounts. At no time will Twitter obtain our passwords or access to our accounts. So it is likely that very soon we will not have to remember complex and multiple passwords for various services.

      Regards.

      Reply
  24. Isn’t this similar to gmail verification system? When you use a different computer, other than the computer where your gmail account isn’t saved.

    Reply
    • Hi,

      Yes this is similar to that, but only to a certain extent. Firstly, this system will come into use every single time you login to your account, so it will replace the password completely. Moreover, Twitter will allow this feature to be used by all app developers. So gradually, all software providers would embrace this technology and this would help everyone by eliminating the need to make or remember multiple passwords for all accounts. This will also help prevent accounts from getting hacked.

      Regards.

      Reply
  25. samuel A. SezerioNovember 3, 2014 at 6:21 AM

    pretty cool application so far keep it up

    Reply
  26. j.raghavendraNovember 3, 2014 at 8:00 AM

    dear rahul thadani

    .I have installed and registered my quickheal total security pack on 1st november 2014
    message says that my password is on the way from twitter
    but till now i have not received any message regarding password
    Is that can we have our own password
    kindly confirm
    raghavendra.j

    Reply
    • Hi Mr. Raghavendra,

      Can you please clarify which password you are expecting from Twitter. I believe there is no situation where Twitter will send you a password. Is this password for your Twitter account?

      Regards.

      Reply
  27. ha
    when i go to home page or dashboard when i click email or any thing
    they are showing password what should i do i don’t know the password

    Reply
    • Hi Shazil,

      Can you please clarify which password you are referring to? Are you talking about the password to access the settings on the dashboard of your Quick Heal product? If you can share some more information, we will be able to help you better.

      Regards.

      Reply
  28. ABHINAY PANDEYDecember 4, 2014 at 7:23 PM

    i am forget passward.please help me

    Reply
  29. umesh chadhaDecember 5, 2014 at 12:09 PM

    yes, remembering too many passwords that too with upper case, lowercase, numbers & symbols is a very tedious task, hope someday we have a better technology like finger print reading or some other that will make our life easy. It will also be good for financial transactions, when people don’t need to carry cash & economy will get of black money.

    Reply