If you’re using Chrome on Android, you can now sign-in to your Google account and some of the other Google services by simply using your fingerprint, instead of typing in your password every time.
Google is rolling out a new feature, called “local user verification,” that allows you to log in to both native applications and web services by registering your fingerprint or any other method you’ve set up to unlock your Android device, including pins, pattern or password.
The newly introduced mechanism, which has also been named “verify it’s you,” takes advantage of Android’s built-in FIDO2 certified security key feature that Google rolled out earlier this year to all devices running Android version 7.0 Nougat or later.
Besides FIDO2 protocol, the feature also relies on W3C WebAuthn (Web Authentication API) and FIDO Client to Authenticator Protocol (CTAP), which are designed to provide simpler and more secure authentication mechanism that sites can use for secure web-based logins.
images from Hacker News