Google is working on a new ‘password-free’ login method for Gmail to increase protection for its users against possible cyber-attacks. The feature will allow users to sign-in to their Google accounts through a verification code on their mobiles, bypassing the need to type a password.
The two-step mobile verification process was revealed by Rohit Paul, a beta tester of the feature on Reddit. He put up step-by-step screenshots of how the new feature will work in 7 slides. The company is testing the feature for now, and has invited a small group of people to use it. It has not confirmed when the new login will be rolled out for other users.
Paul explained the process in detail on Reddit.
To log-in, one needs to first enter their user id, following which they will receive a prompt saying ‘Check your phone’. Users receive a message on their mobile asking whether they are trying to sign-in from a new computer.
After user clicks on ‘Yes’, they will get a challenge or a number which is reflected on the computer screen, which they have to type on their smartphone as well. Once you type the number, say 21 like in Paul’s case, you get access to the computer.
Earlier this year, Google had announced a Chrome extension, ‘Password Alert’ that sends an alert when a user fall victims to a phishing scam and enter their Google password on pages which are design to look like official Google sign-in pages.