Apple releases open source tools for password manager developers

Developers can incorporate known password rules and change password URLs to improve the standard of common platforms

Apple has launched an open source project to give developers of password managers a set of tools to create strong passwords compatible with widely-used websites and platforms. 

Password Manager Resources, published on GitHub, allows developers to integrate website-specific requirements used by the iCloud Keychain password manager to generate strong, unique passwords.

The tools have been released to resolve an issue with many password managers, where the unique and strong passwords generated automatically aren’t necessarily compatible with the websites they are being created for.

Should password managers generate a password that is not compatible with a website’s specific requirements, the fear is that users would abandon the process and generate their own relatively insecure password.

“By sharing resources, all password managers can improve their quality with less work than it'd take for any individual password manager to achieve the same effect,” the project’s readme said.

“By publicly documenting website-specific behaviours, password managers can offer an incentive for websites to use standards or emerging standards to improve their compatibility with password managers; it's no fun to be called out on a list! By improving the quality of password managers, we improve user trust in them as a concept, which benefits everyone.”

Password Manager Resources also contain ‘quirks’, which refers to specific password rules on various platforms, websites with shared credential backend systems, as well as change password URLs, so users are taken directly to relevant pages.

Apple has encouraged users to incorporate the data from the project into their password managers, but to also contribute any ‘quirks’ back into the project.

Related Resource

Your comprehensive guide to low-code

The missing component of your digital strategy - for developers and CIOs alike

Download now

Passwords are now considered by many across the industry to be incompatible with the strongest ideals of information security. Reuse of common passwords, for example, and individuals using the same password across different accounts and sign-ins are known to be two issues responsible for a vast swathe of breaches.

Microsoft, for example, revealed in December 2019 that 44 million users were still using passwords that were previously compromised in past data breaches.

With alternatives, such as biometric security, not yet in a position to be widely adopted, Apple is hoping the move can bolster password security for masses of people who rely on the protocol to safeguard their personal and corporate data.

Featured Resources

B2B under quarantine

Key B2C e-commerce features B2B need to adopt to survive

Download now

The top three IT pains of the new reality and how to solve them

Driving more resiliency with unified operations and service management

Download now

The five essentials from your endpoint security partner

Empower your MSP business to operate efficiently

Download now

How fashion retailers are redesigning their digital future

Fashion retail guide

Download now

Recommended

Most employees put their workplace at risk by taking cyber security shortcuts
cyber security

Most employees put their workplace at risk by taking cyber security shortcuts

27 Jul 2021
61% of organizations say improving security a top priority for 2021
cyber security

61% of organizations say improving security a top priority for 2021

29 Jun 2021
ProtectedBy.AI’s CodeLock blocks malware at source code level
software as a service (SaaS)

ProtectedBy.AI’s CodeLock blocks malware at source code level

9 Jun 2021
CISOs aren’t leading by example when it comes to cyber security
cyber security

CISOs aren’t leading by example when it comes to cyber security

24 May 2021

Most Popular

The benefits of workload optimisation
Sponsored

The benefits of workload optimisation

16 Jul 2021
RMIT to be first Australian university to implement AWS supercomputing facility
high-performance computing (HPC)

RMIT to be first Australian university to implement AWS supercomputing facility

28 Jul 2021
Samsung Galaxy S21 5G review: A rose-tinted experience
Mobile Phones

Samsung Galaxy S21 5G review: A rose-tinted experience

14 Jul 2021