Google working on strong password generator for Chrome

Google working on strong password generator for Chrome

Summary: Google tries to eliminate weak passwords.

SHARE:
TOPICS: Google
6

Google is working on creating a strong password generator for the Chrome browser that will automatically generate strong passwords for users.

The system is currently in the development stage, but Google has outlined the design principles over on the Chromium blog. It also gives us an insight into Google's long-term plans.

'Chrome's long term solution to this problem is browser sign in plus OpenID. While implementing browser sign in is something that we can control, getting most sites on the internet to use OpenID will take a while. In the meantime it would be nice to have a way to achieve the same affect of having the browser control authentication. Currently you can mostly achieve this goal through Password Manager and Browser Sync, but users still know their passwords so they are still susceptible to phishing. By having Chrome generate passwords for users, we can remove this problem.'

The password generator will use heuristics to detect when users are on a sign-up pages and put a key icon in the password box. Clicking on this icon will generate a strong password, display it to the user, and if they accept it, add it and the username to the password manager.

I think that this is both a good idea and a bad idea. It's a good idea because it helps users generate strong passwords, minimizing reuse and weak passwords. However, I don't like it because it locks users into Chrome and makes it hard for them to use a different browser.

In other words, it's a good idea, but it's also a good way for Google to lock users into its browser.

Clever.

Topic: Google

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

6 comments
Log in or register to join the discussion
  • RE: Google working on strong password generator for Chrome

    Fantastic.....Hurry!!!
    sziltner
  • Locks users into Chrome HOW, exactly?

    Are you suggesting that Chrome won't tell users what the strong passwords are? Because if it does then they can just copy-paste the passwords into Firefox's password manager instead, and then uninstall Chrome. Lock-in avoided.
    Zogg
    • RE: Google working on strong password generator for Chrome

      @Zogg -- No lock in. Just an inconvenience thet most people won't want. Similar to IE being the default browser on a new Windows install. Other browsers are available, but the public at large will never install them. It's a fact.
      sackbut
  • RE: Google working on strong password generator for Chrome

    It's not locking anything. A user can always retrieve the clear text passwords if they really wanted and it wouldn't be hard to import those passwords into a competing password manager app. I would be more worried about someone figuring out a way to break out of the sandbox and retrieving those passwords. Then again that's why Google has bounty's and keeps the project open source.
    elliottn
  • RE: Google working on strong password generator for Chrome

    I've had this for ages on IE, Firefox and Chrome - it is called LastPass.
    wright_is
  • RE: Google working on strong password generator for Chrome

    Give SkyNet all your personal data and then get it to make passwords too!

    [For the record I use 1password to the same ends]
    alistair_cunningham