Whenever you release a new tool or product, you need to tell the bigger story behind it. With the recent launch of Authopia by NordPass, we've chosen Sorin Manole, Head of Product, R&D at NordPass and the team lead behind Authopia, as the perfect storyteller for the occasion. We recently had the opportunity to sit down with Sorin and delve into how Authopia works, who it is designed for, and what benefits it offers. Enjoy the conversation!
Hi Sorin! First off, can you explain exactly what Authopia is, and how it works?
Sorin: Sure thing! Authopia is a new tool that allows you to easily add a passkey widget to a login form on any website or service. In other words, you can use it to provide your customers with an option to log in to their accounts without using passwords.
This tool is available for free, and the way it works is super simple: first, you receive a few pre-written lines of code that can be easily implemented by anyone with basic knowledge of IT programming. Then, you use that code to add a passkey widget to your login form. Finally, you activate the widget by registering your website or service with Authopia. That's it!
The idea behind Authopia was to offer organizations a way to implement passkey logins with minimal coding and no cost. I believe we've successfully delivered on that premise.
The question that immediately comes to mind is: Why has NordPass decided to release such a tool?
Sorin: Although our main product, NordPass, is a password manager, we've long advocated for password-free authentication methods. Since joining the FIDO Alliance in 2022, we've been very vocal about how we think technologies like passkeys can enhance online account security and streamline the login process.
Over the past year, we've noticed major players like Amazon, Google, and Microsoft starting to support passkey logins, which has been very encouraging. However, we've also identified a barrier preventing other organizations from adopting passwordless solutions: the technical means to implement them.
So, we’ve created Authopia, to provide organizations with a tool that would allow them to effortlessly introduce passwordless logins and improve their login experience.
Can you tell us about the benefits that organizations and their customers can expect after going passwordless with Authopia?
Sorin: Let's focus on customers first, as, ultimately, they are the ones using passkey logins. What they get is a highly secure alternative to passwords, allowing them to log in to websites or services with just one click. Unlike traditional passwords, which can be guessed or stolen, passkeys use cryptographic keys designed to resist phishing and brute-force attacks. This provides customers with a greater sense of security. Plus, users can say goodbye to the hassle of remembering passwords, freeing their minds from acting as a password storage unit.
For organizations, switching to passkey logins isn't just about improving the user experience. It's also about driving sign-ups and conversions. When it's easier for customers to access their accounts, they're more likely to use your products and services – that's a fact. Moreover, going passwordless can reduce maintenance costs, such as handling password resets and tech support requests, which is always a most welcome benefit.
Does that mean every business should aim for passwordless authentication?
Sorin: Absolutely! Considering all the benefits and how popular password-free logins are becoming on major platforms, I'd say passwordless authentication is the future. While passwords still serve a purpose today, technologies like passkeys are demonstrating greater security and convenience in everyday use. Therefore, it's likely that they will render traditional passwords obsolete in a few years.
Also, think of it this way: for some, using passwords can feel like being stuck in a loop. To be strong and secure, passwords need to be long and complex. However, their length and complexity often make them hard to remember. As a result, many users end up using weaker passwords, which hackers can easily crack—unless they're made strong and secure. Do you see where I'm going with this?
Going passwordless breaks this cycle for both users and service providers. Users get a smoother login experience, while service providers can improve their security measures and cut down on the hassle of managing passwords. It’s a win-win situation.
What type of organizations would benefit from using Authopia then?
Sorin: I think all businesses that provide a SaaS solution—such as websites or services requiring customers to log in—could benefit from offering a password-free authentication option. I’m talking about e-shops, healthcare portals, e-learning and gaming platforms, streaming services, fitness and wellness applications—you name it. If a customer's experience can be improved by adding a password-free option to interact with a product or a brand, it would be a missed opportunity not to make that improvement.
So, what’s next for authentication? What does the future hold?
Sorin: I strongly believe that the future lies in companies moving away from passwords and adopting passwordless solutions like passkeys. Technology constantly evolves, with new and improved solutions replacing the old ones. It’s a bit like the progression from DVDs to 4K streaming. Passwords are like DVDs – they were once really great and may still serve a purpose today, but if you want that high-end experience, you won’t stick with them anymore. This is to say that password-free solutions are simply the new, better option.
Therefore, we encourage every business to upgrade their login forms to use passkeys, especially since you can do it for free with a tool like Authopia. If you want to try it out or need more information about how Authopia works, make sure to visit our website. There, you can also contact us directly if you have any questions. My team and I will be happy to help!