Some reports have indicated that Google has planned biometric authentication to the Chrome Autofill feature on Android devices. The move will make conducting online purchases via its browser more appropriate and secure. It is noteworthy that users will still need to manually input their information when using a credit card for the first time. But, Chrome for Android will allow users to bypass CVV checks and authenticate transactions using face ID or fingerprint alone for future purchases. The browser will also apply a similar process to log in to online services. This new touch-to-fill feature will bring up a list of accounts attached to the webpage a user is currently browsing and allow them to verify their identity using biometrics.
Google Chrome Autofill upgrade also delivers an important boost to security beyond the benefits of convenience. Formerly, an unauthorized third party with access to a device could gain entry to the owner’s online accounts via the Autofill feature. Moreover, it puts paid to this possibility using biometrics unless twins are involved. The common advice was never to use a browser’s autofill function and opt for a secure password manager instead of security-conscious users. But, it’s possible to account credentials will be just as safe stored in-browser with the imminent upgrade to Chrome for Android.
Point to be noted that Chrome utilizes the WebAuthn standard when registering fingerprint and facial data to ensure sensitive biometric information remains secure. The company has also assured users that biometric data will always remain on-device, never transmitted to the cloud. Google Chrome’s new feature also reduces the risk of falling victim significantly to elaborate phishing scams. While a fake landing page hosted on an illegitimate domain might deceive an unwitting user, the browser itself will not be so easy to dupe. The biometric authentication is set to land on Android devices within the next few weeks, but already available on Chrome for Mac and Windows. It is important that Google has also taken one step closer to banishing third-party cookies from Chrome.