Modernizing Authentication — What It Takes to Transform Secure Access
It's always a good idea to change your passwords on a regular basis, but doing so is sufficiently labor-intensive that few people do it as often as they should. The new solutions are aimed at making it a no-brainer.
"Users select the passwords they want to change, and Dashlane automatically changes them in a click," Dashlane explained in a statement. "The strong and unique Dashlane-generated password is automatically and securely synced across all their devices."
"What used to take hours now takes mere seconds," the company added.https://l1.cdn.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
Dashlane recently purchased the password changing system PassOmatic, and it's using PassOmatic's technology to implement the new solution, which is currently in beta. While the beta version is compatible with over 70 popular websites including Amazon, eBay, Facebook, Google, LinkedIn, PayPal, Twitter and Yahoo, the company says the list will soon grow to include hundreds of sites.
"We believed that allowing consumers to easily change their passwords is a problem that needed to be solved," PassOmatic co-founder Chana Kalai said in a statement. "It was also obvious to us that the solution made even more sense when combined with a password manager."
Dashlane says it will also soon introducing a recurring password change feature designed to automate password changes at regular intervals, such as once every 30 days.
"The ability to automatically change passwords is revolutionary," Dashlane CEO Emmanuel Schalit said in a statement. "It provides users a highly effective way to stay safe from increasingly common security breaches on the scale of Heartbleed."
A recent eSecurity Planet article offered advice on how to limit Heartbleed risk, including requiring users to update their passwords -- solutions like those from Dashlane and LastPass should make that policy much easier to implement.
Soon after Dashlane's announcement, LastPass introduced a new feature called Auto-Password Change, which is also currently available in beta and supports over 75 leading websites, including (like Dashlane) eBay, Facebook, Google, LinkedIn, PayPal, Twitter and Yahoo.
To maximize the security of the process, LastPass said, "We’ve implemented this feature to make password changes locally on your machine, ensuring we stay true to our mission and never have access to your data. All of your sensitive information is encrypted on your computer before syncing, and your encryption key is never shared with LastPass."
LastPass' Auto-Password Change feature is now available in beta for all users, while Dashlane's Password Changer is in a limited beta, with a set number of users being added each week.
With password security increasingly in the news lately, a solution like this should be very attractive to a wide variety of users -- and it's safe to assume that competing password management solutions will be adding this kind of functionality very soon as well.