Story image

Microsoft launches ‘phone signin’ for Android and iOS - but what about its Windows Phone?

20 Apr 17

Microsoft has moved one step closer to abandoning the password, with the launch of its new ‘phone sign-in’ specifically for Microsoft accounts on Android and iOS - but not for its own Windows Phones.

The company posted the announcement in a blog this week, which explained that it wants to ‘shift the security burden from your memory to your device’.

So far it is only available for the Microsoft Authenticator app on Android and iOS. Why has Microsoft ignored its own creations, Windows Phone? 

The blog says that Windows Phone makes up less than 5% of Authenticator app users, so the priorities lie with Android and iOS - at least for now. If there is significant uptake amongst other users, Microsoft may roll it out for Windows Phone.

The new phone-sign in method is part of the Microsoft Authenticator app. Users can add their account to the app and enter their usual username when signing in from a new location. 

After that, users don’t have to enter their passwords; instead a notification is sent to their phone. They just need to tap “approve” and the logging in process is complete.

The company says there is a link at the bottom of the confirmation page that allows users to use passwords if they prefer. They can switch between the two as needed and the app will remember preferences.

Microsoft believes that the new method is ‘easier’ than two-step verification and much more secure than traditional passwords. 

According to Microsoft, using a notification in combination with phone unlock methods such as PINs or fingerprints is a ‘seamless’ way to incorporate identity verification in a familiar way.

Users who wish to use the Microsoft Authenticator app can download it from Google Play or the App Store.

  • If you already use the Microsoft Authenticator for your personal account, select the dropdown button on your account tile, and choose Enable phone sign-in.
  • If you are adding a new account on an Android phone, we’ll automatically prompt you to set it up.
  • If you are adding a new account on an iPhone, and we’ll automatically set it up for you by default.
  • Then just try it out! The next time you sign in, we’ll send a notification to your phone. That’s it!”

Microsoft says it wants to hear from users about how they find the new signin methods.

Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
Oracle Java Card update boosts security for IoT devices
"Java Card 3.1 is very significant to the Internet of Things, bringing interoperability, security and flexibility to a fast-growing market currently lacking high-security and flexible edge security solutions."
Sophos hires ex-McAfee SVP Gavin Struther
After 16 years as the APAC senior vice president and president for McAfee, Struthers is now heading the APJ arm of Sophos.
Half of companies unable to detect IoT device breaches
A Gemalto study also shows that the of blockchain technology to help secure IoT data, services and devices has doubled in a year.
Huawei founder publically denies spying allegations
“After all the evidence is made public, we will rely on the justice system.”
Malware downloader on the rise in Check Point’s latest Threat Index
Organisations continue to be targeted by cryptominers, despite an overall drop in value across all cryptocurrencies in 2018.
IoT breaches: Nearly half of businesses still can’t detect them
The Internet of Thing’s (IoT’s) rapid rise to prominence may have compromised its security, if a new report from Gemalto is anything to go by.