The wired article they link to has a better explanation as to what the google concept is. It really amounts to getting rid of the password "except is special cases". So, not quite replacing the password, but it most certainly seems like they want to take a lot of password typing away. Taking the Wired article as the basis for my response, I can say I don't think this is a good idea. As AlderaanDuran explained, just passwords is weak and just a device is also weak. So, a combination of both would be best in my opinion. On top of that, I don't want to get a Google device to log in to my accounts. This needs to be an open standard which can be implemented by other organizations like Mozilla, the EFF or even Apple if people are OK with that.
I hope this is underway. The best chance of an open standard being popularized, is if it is the first available.This needs to be an open standard which can be implemented by other organizations like Mozilla, the EFF or even Apple if people are OK with that.
Ahhh, if that's the case I was mistaken. Anytime a company talks about adding a token type physical device I assume it's in addition to. the article linked didn't go into details, so perhaps I assumed. Perhaps they are trying to replace passwords entirely, which is indeed kind of a bad idea. It's just swapping one form of security for another, not combining two which would make it stronger. If you are correct, I am not a fan of this either.