On Monday Apple released its new iPhone operating system. A password alternative plays a central role in this. There are also new security features and a more variable lock screen.
Apple’s new Live Text feature: iOS 17 now also translates into videos
Insecure or stolen passwords are still probably the greatest security risk in the entire IT. Apple is doing the update to iOS that iPhone customers are likely to experience Monday evening German time will be available, a step towards a password-free future. It is one of the more complicated, but also one of the most important innovations in the operating system.
This is made possible by the open standard FIDO (Fast Identity Online), which in German means fast online identification. Behind it is the non-commercial FIDO Alliance
If you want to log in via FIDO, you must first have a smartphone, tablet or computer with the respective register the service yourself. A public and a private key are created. The private one is stored on the device itself in a hardware chip that cannot leak any information – a so-called Trusted Platform Module (TPM). In the iPhone, this role is assumed by the so-called Secure Enclave, a system separate from the main processor. Separate public keys are generated for each website and app that you log into with FIDO and stored on the respective server. Log-in is only possible if both keys match. The advantage: the login method is protected against password leaks and phishing attacks.