Google has announced a new feature in the Chrome browser. This will automatically change the user’s password when the built-in password manager detects the credentials and if the user’s password is compromised.
“When Chrome detects a compromised password while signing in, Google Password Manager will prompt users with an option to fix it automatically,” said Ashima Arora, Chirag Desai and Eiji Kitamura of Google. “On supported websites, Chrome can generate strong exchanges and automatically update users’ passwords.”
This feature generates strong passwords during sign-up based on existing features of the Password Manager and generates credentials for flags detected in data breach.
With automated password changes, Google said it is to reduce friction and help users keep their accounts safe without searching for relevant account settings or abandoning the process in the middle.
Website owners can support this feature by adopting the following methods –
Use AutoComplete=”Current-PassWord” and AutoComplete=”New-PassWord” to trigger Autofill and storage and set up a redirect from /.Well-NownChange/Change-PassWord from the Password Change form on your website
“It would be much easier if the password manager could navigate directly to the change password URL,” Kitamura said. “This is where the well-known URLs to change your password can be useful.”
“By booking a well-known URL path that redirects users to the Change Password page, the website can easily redirect users to the right location and change their password.”
This is because companies are increasingly changing as they are shifting more and more as they are becoming a stronger alternative to protecting their accounts from potential takeover attacks. Earlier this month, Microsoft said it would create a default method for PassKeys when signing up for a new customer account.
Source link
