LastPass announced that password manager users can now log into the app without a master password. In the new system, customers will authenticate via LastPass Authenticator using their biometric data or fingerprint ID instead of a master password. Support for physical security keys will be added at a later date.
With this new feature, LastPass says, the service is the first of its kind to offer passwordless authentication. Passwordless login has many advantages, especially for password managers that contain personal information and account credentials. Predictably, the biggest advantage is that biometrics-based authentication systems have a natural defense against phishing, password-filling attacks, and security risks from password reuse.
Additionally, LastPass believes that offering a more seamless way to log in that doesn’t involve typing the same complex password over and over will encourage more people to adopt password managers and minimize the chance of account takeovers.
Initially, users will still need to set a master password when opening a new LastPass account, but the company’s goal is to migrate to a completely passwordless system based on FIDO standards in the future.
As Chris Hoff, LastPass Head of Secure Technology, said, “Just after tech giants and identity providers announced their plans for password-free use across operating systems, web browsers, devices, and apps, LastPass is helping users sign in securely and effortlessly, It is excited to be the first and only password manager that allows it to manage account credentials and instantly access accounts used every day without having to enter any passwords.”