LastPass Uses Biometrics To Replace Master Passwords

Tyler Cross
Tyler Cross Senior Writer
Tyler Cross Tyler Cross Senior Writer

LastPass, a company that sells a premium password manager, introduced two new ways to completely erase master passwords with FIDO2 authenticators.

Passwords have glaring security problems, and while a password manager has historically been able to protect and encrypt your passwords from outside interception, if someone obtains your master password, they can breach your account. Lately, large-scale data breaches have been on the rise, leading to a rush by companies to find passwordless solutions.

FIDO2 authenticators replace the need to have a master password, by providing you with the choice between biometric logins and hardware keys. In both cases, it removes a hacker’s ability to access your LastPass account from afar, offering a significant upgrade to your security.

LastPass has been improving its passkey technology over the last few months; tech that takes advantage of biometrics to replace passwords. The LastPass Authenticator App was the first method of removing a master password the company introduced.

“Not only does meeting the FIDO2 compliance standard provide our customers with the industry standard for security and a simplified login experience, but it also promises them greater authentication choices,” said LastPass CEO Karim Toubba.

The FIDO2 authenticators currently work with the Chrome and Firefox extensions and web browsers, with an upcoming desktop and Safari browser version in the works.

Admins on a LastPass Business and Teams account will be able to manage which passwordless option other users on that account can use and turn the passwordless feature on and off.

“By eliminating the requirement for a knowledge-based credential in favor of unphishable FIDO2 authenticators, LastPass has taken an important step to provide simpler and more secure access to LastPass vaults — accelerating their customers’ journey towards a password-independent future,” said the executive director and CMO of the FIDO Alliance.

Both new and current users of both the free and premium version of LastPass will be able to use all three of the current passwordless options for free.

About the Author
Tyler Cross
Tyler Cross
Senior Writer

About the Author

Tyler is a writer at SafetyDetectives with a passion for researching all things tech and cybersecurity. Prior to joining the SafetyDetectives team, he worked with cybersecurity products hands-on for more than five years, including password managers, antiviruses, and VPNs and learned everything about their use cases and function. When he isn't working as a "SafetyDetective", he enjoys studying history, researching investment opportunities, writing novels, and playing Dungeons and Dragons with friends."