Windows Hello is just one part of the authentication story in Windows 10. After you authenticate your Windows device using Windows Hello, you still need to remember dozens of passwords to login to your many services. Microsoft is solving this problem with “Passport” which is a code name for a programming system that IT managers, software developers and website authors can use to provide a more secure way of letting you sign-in to their sites or apps.
Instead of using a shared or shareable secret like a password, Passport feature in Windows 10 will securely authenticate to applications, websites and networks on your behalf—without sending up a password. Since there is no shared password stored on the servers for a hacker to potentially compromise, this should avoid recent situations like web servers getting hacked.
Windows 10 will ask you to verify that you have possession of your device before it authenticates on your behalf, with a PIN or Windows Hello on devices with biometric sensors. Once authenticated with “Passport”, you will be able to instantly access a growing set of websites and services across a range of industries – favorite commerce sites, email and social networking services, financial institutions, business networks and more.
Microsoft has announced that “Passport” will work with thousands of enterprise Azure Active Directory services at launch, and they are working with the FIDO alliance to support replacing passwords.