臉書正在研發新技術 希望能終結密碼時代大綱
Someday, passwords will likely be a distant memory.
有一天,密碼可能會成爲遙遠的回憶。
For now, they are necessary -- as well as regularly re-used, and sometimes leaked when hackers access private information. When you forget yours, the process to log back into an account you're locked out of is clunky and not as secure as it could be.
不過現在,密碼還是很有必要的--不僅要經常重複使用,有時被黑客獲取個人信息後,密碼還會泄露。當你忘記了密碼,要想重新登入到你被鎖定的帳戶裏,這個過程可不容易,並且也不太安全。
Facebook wants to change that -- and eventually, to make passwords obsolete.
臉書想要改變這一情況--最終,讓密碼作廢。
Facebook's F8 developer conference last Tuesday brought the launch of the beta version of Delegated Account Recovery, a way for the social network to be the backup security key in case you forget your password on different, non-Facebook services.
上週二,臉書在F8開發者大會上發佈了“帳戶授權恢復”的測試版,這是一種讓社交網絡成爲備份安全密鑰的方式,以防你在不同的、非臉書設備上忘記了你的密碼。
The idea: If you forget your password on an app or website, it will instead use Facebook to verify you are who you say you are. You will have to prove yourself through exercises like recognizing friends' photos in order to log into your other account.
這個想法是這樣的:如果你在一個應用程序或者網頁上忘記了密碼,就能通過臉書來辨認你是否是你說的那個人。你得通過一些測試--比如認出朋友們的照片等--來證實你自己,從而登錄到你其他的帳戶。
"We want to make sure we can let you use information to keep yourself secure, but not have to trade your privacy," Facebook security engineer Brad Hill told cnnTech.
臉書安全工程師布萊德·希爾在接受cnn科技採訪時表示:“我們想確保你能使用標識性信息來保證自身的安全,而無需泄露你的隱私。”
Think about the last time you forgot your password. The website likely sent a link to your email to reset your password, or texted a code to your mobile phone. You might have answered security questions, like your mother's maiden name or the moniker of your first pet.
想想你上次是什麼時候忘記了密碼。這些網頁很有可能會給你的郵箱發一個鏈接讓你重置密碼,或者給你的手機發送一個驗證碼。你可能已經回答了安全提示問題,比如你母親未出嫁時的姓名,或者你第一個寵物的暱稱。
Facebook says its method is more secure. Text messages are unencrypted, and email accounts can be hacked. Further, Facebook's Delegated Account Recovery works even if someone switches their phone number or email address.
臉書稱,它的方法更安全。信息通常都未加密,電子郵件帳戶會被黑客攻擊。此外,只要你能提供電話號碼或者郵箱地址,臉書的“帳戶授權恢復”就能工作。
People might be skeptical about trusting Facebook with other accounts. The company knows everything about you, and uses your information to advertise to you. And of course, if your Facebook account is hacked, the bad guys can log into your other accounts that way, too.
不過人們可能會對相信臉書及其他帳戶產生懷疑。這個公司知道你所有的事,會使用你的信息去通知你。因此,如果你的臉書帳戶被黑,這些壞傢伙們就能以同樣的方式黑進你其他的帳戶。
But Hill insisted Facebook has safeguards in place to recognize fraudulent activity, and will alert you if anything seems amiss. If, say, Facebook knows you always log in via your iPhone in California, an attempt from Russia on an Android will be flagged.
不過希爾堅稱,臉書有適當的安保措施來識別欺騙性行爲,如果有任何問題,它都會向你發送預警。比方說,臉書知道你總是從加利福利亞的蘋果手機上登錄,一旦有來自俄羅斯的安卓設備嘗試登錄,它就會報警。
Delegated Account Recovery doesn't replace passwords. But it's a stepping stone in Facebook's efforts to improve and eventually replace the security mechanisms we currently use.
“帳戶授權恢復”不能代替密碼。不過,它是臉書努力改進並且最終取代我們當前的安全機制的一個跳板。
