Skip to content

Menu

Robinson & Cole LLP logo
About UsOur PracticeContactTopics
Search
Close
Subscribe

Data Privacy + Cybersecurity Insider

Leveraging Knowledge to Manage Your Data Risks

Facebook’s New Software Suggests Passwords May One Day be Obsolete

By Kathryn Rattigan on April 27, 2017
Posted in Data Privacy, Social Media

Facebook says that someday ‘the password’ will be a distant memory. But for now, passwords are certainly necessary. However, Facebook has released a beta version of its Delegated Account Recovery software –a new way for social networks to be the backup security key when online consumers forget their password on different, non-Facebook websites and services. The concept behind this software: When a consumer forgets their password on a website, mobile app or other online service, the website, mobile app or service will instead use Facebook to verify the individual consumer instead of prompting the individual to re-set a password and answer security questions that are often not completely secure methods of password transmission. Delegated Account Recovery will require that the individual consumer prove that they are who they say they are by recognizing friends’ photos in order to log into their account on other websites, mobile apps or online services. Facebook security engineer, Brad Hill, said, “We want to make sure we can let you use identifying information to keep yourself secure, but not have to trade your privacy. Right now, you tell your mother’s maiden name to 500 different places and if anyone of them gets hacked, then you’re vulnerable everywhere.”

Facebook says its new method is more secure than the typical password reset via an email or code to a mobile device. Text messages are unencrypted and all email accounts can easily be hacked. The Delegated Account Recovery software works even if the individual consumer changes their phone number or email address.

However, the public is generally skeptical about trusting Facebook with their other accounts—Facebook already knows everything about you and uses your information to advertise to you. And if an individual consumer’s Facebook account were hacked, then of course, those hackers can use that information to log into other accounts. Of course, Facebook insists that it has safeguards in place to recognize fraudulent activity and that it limits the amount of third-party accounts that can be recovered at one time. For now, only developers will be trying out this new software. Eventually, Facebook will open-source Delegated Account Recovery so that any company can use it, so even if as a consumer you don’t trust Facebook with your identity, you may have put trust in another company that implements this tool.

Tags: Delegated Account Recovery, Facebook
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Kathryn Rattigan Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security…

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.

Read more about Kathryn Rattigan
Show more Show less
Related Posts
Growing Calls to Ban Chinese Owned TikTok App and Other Software Apps Considered to be National Security Threats
March 3, 2023
SEC Charges Social Media Influencers with Stock Manipulation and Warns Investors
January 5, 2023
Facebook Is Removing Some Sensitive Information from Public Profiles
November 23, 2022
Follow us on X Follow us on X
Follow Us on Facebook Follow Us on Facebook
View Our Linkedin Profile View Our Linkedin Profile

Data Privacy + Cybersecurity Insider

Our Authors
Robinson & Cole LLP logo
Connecticut•Massachusetts•New York•Washington DC•Rhode Island•Florida•California•Delaware•Pennsylvania
Follow us on X Follow Us on Facebook View Our Linkedin Profile RSS
Privacy PolicyTerms of UseCalifornia Privacy Rights Notice
  • Home
  • Subscribe
  • Our Practice
  • Contact

Robinson+Cole is a law firm serving regional, national and global clients from nine offices throughout the Northeast. Our Data Privacy + Security Team brings together lawyers from the firm’s Intellectual Property and Technology, Commercial Litigation, and E-Commerce Groups.

Read More...

Topics

Archives

Copyright © 2025, Robinson & Cole LLP. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo

Please note that as of January 1, 2023 our Privacy Policy has changed. Click here for details on our new terms.

OK