Thursday, September 18, 2014

Apple Watch doesn't need Touch ID - killer feature

When Apple Watch was announced last week, like many I was surprised that it didn't include the Touch ID fingerprint security first revealed in the iPhone 5S. But it doesn't need it; and this could be key to awesome value from the Apple Watch. A killer feature.

We know that the Apple Watch will need to be unlocked, authenticated, once each day. But that it'll remain unlocked as long as it's on your wrist. However we don't know how it gets unlocked. Tapping in a passcode on the watch screen would be a step backwards after Touch ID.

Here's a better plan: we know the Watch needs an iPhone. Place it on your wrist for the first time that day and let the watch communicate with your nearby iPhone for you to confirm your identity, ideally with Touch ID rather than a passcode. Then let the iPhone confirm who you are back to the Watch and it can remain unlocked so long as you keep it on your wrist. Great.

But it gets better: once the Watch knows it's securely on your wrist the authentication can go the other way: the Watch can unlock each of your Apple devices (and selected other smart objects, like door locks or cars...) Imagine your iPad or Mac or iPhone just being ready to use without any login. Each device would stay that way, so long as you and your Watch are within Bluetooth range. Step away from your device and it'll automatically lock. Options in the setup would let you choose to get an alert from the Watch if you walked away from your iPhone or iPad. Another option would allow for your devices to lock when you're out of range and automatically unlock as soon as you return.

Combine this ease of use with Keychain Access that supplies unique, complex passwords and other info for websites and suddenly Apple has solved the problem of re-use of insecure username and password combinations. It'd be a massive leap in usability. A true killer feature that would make owning an Apple Watch almost a no-brainer. And, as Tim Cook said of Apple Pay, it's "something only Apple can do!"

All the pieces are in place, just as soon as Apple Watch becomes available. The only other thing is to write the software to enable this. But we know that the security infrastructure is in place with Touch ID on the iPhone; combined with the secure communication between Apple devices using Bluetooth Low Energy and other protocols...
Get more like this

Monday, September 8, 2014

“Squeaky clean since 1918!”

“Squeaky clean since 1918” is the tag line for the Paragon laundry group, a family-owned business with >600 staff and an impressive slice of the UK commercial laundry market; along with some interests in the Middle East and elsewhere…

From Monday 8th September I’m thrilled to be appointed as head of NewGen International, the group’s software subsidiary. It’s an interesting time with some pioneering “Internet of Things” work, including embedding RFID tags in laundry items to add value in a number of innovative ways.

And I’m excited that the group MD’s have spotted some great opportunities with the Red Starfish software. I’m delighted that I’m retaining my interests in Starfish CI alongside this new role. 
Get more like this

Tuesday, September 2, 2014

Could an '#iWatch' kill passwords? (speculation)

I've been enjoying the new iOS 8 and OS X Yosemite betas and look forward to the imminent public release as early as next week. I've also been dreaming about the fabled iWatch idea and wondering about just how smart Apple can be with the technology ecosystem that's unfolding. For example

  • What's the betting that an iWatch includes the same Touch ID fingerprint authentication that the iPhone 5S has? Once the device is strapped to my wrist and I've authenticated with my fingerprint, there'd be no need to check my identity again, unless I take off the watch - when it would lock again automatically, requiring a new fingerprint check to unlock. Brilliant!
  • Wouldn't it be great if the watch could then wirelessly authenticate me to my nearby iOS and OS X device(s)? That's something that could easily be accomplished using the Bluetooth Low Energy or WiFi communications capability that iOS 8 and OS X Yosemite are using for the 'continuity' and 'handover' features; along with the secure design of Keychain Access...

  • I guess the feature should be optional; but I think many of us would value the convenience of not having to enter a passcode into a phone, or type a password to unlock a computer. And it'd be secure: remember, the 'iWatch' has me authenticated with my fingerprint, and I remain authenticated unless/until I take the watch off. At that point, my watch and all my nearby devices get locked; and my devices get locked (with the passcode/password login enabled) as soon as my watch moves out of 'nearby' wireless range. 
  • Once I'm logged in to my iOS and OS X device(s) then Keychain Access saves me having to remember endless complex username and password combinations for my web and other services. And I trust it, along with iTunes, with some of my payment card details, too. All that is at risk, though, if someone's able to bypass my 4-digit passcode on the phone, or the password to my Macbook. The iWatch + Touch ID could add a really secure front end to my private information, making it much, much harder for my password and card details to fall into the wrong hands.
  • We already have a feel for how good the 'continuity' and 'handover' features of the iOS 8 + OS X Yosemite combination can be: it's great to start an email on the iPhone and finish it up on the iPad; or get map directions on the Macbook and transfer them to the phone; or carry on reading in iBooks, picking up where I left off from one device to another... It seems a natural extension of this usefulness to move beyond the cumbersome and 'broken' passcode/password system. And this 'simple' combination of technology that Apple already has available, when introduced to the hoped-for 'iWatch', means that Apple's really well poised to introduce the kind of usability innovation and elegance that they're renowned for. And save us endless hours of typing in passwords.
I, for one, am hoping for this: it's one sure-fire way to help me to justify the expense of a new device to replace my perfectly functional choice of existing watches.

Get more like this