Windows Hello es una tecnología basada en biometría que permite a los usuarios de Windows 10 (y aquellos que actualizan a Windows 11) autenticar el acceso seguro a sus dispositivos, aplicaciones, servicios en línea y redes con solo una huella digital, escaneo de iris o reconocimiento facial. El mecanismo de inicio de sesión es esencialmente una alternativa a las contraseñas y es ampliamente considerado como un método más fácil de usar, seguro y confiable para acceder a dispositivos, servicios y datos críticos que los inicios de sesión tradicionales que usan contraseñas.
"Windows Hello solves some problems: security and inconvenience," said Patrick Moorhead, president and senior analyst at Moor Insights & Strategy. “Traditional passwords are not secure because they are hard to remember, so people choose passwords that are easy to guess or type their passwords. " It's not uncommon for people to use the same password (or variations) across multiple sites and apps. Windows Hello and other biometric authentication features like Apple's Face ID or Touch ID are designed to provide a unique and more secure alternative to passwords. because it's based on technology that's harder to crack."As we rely even more on an Internet connection for everything in our lives, we're more than ready to do away with passwords," said Katharine Holdsworth, the group's senior program manager, Windows Security “Passwords are complicated to use and present security risks for users and organizations of all sizes… With multi-factor authentication, an account is 99,9% less likely to be compromised.
How Windows Hello works
Windows Hello limits the attack surface of Windows by eliminating the need for passwords and other methods where identities are more likely to be stolen. "Windows Hello uses 3D structured light to create a model of someone's face, then uses anti-spoofing techniques to limit the success of people creating a fake head or mask to spoof the system," Moorhead said. Windows users can set up Windows Hello in the sign-in options in account settings. Users must run a face, iris, or fingerprint scan to get started, but they can always enhance those scans and add or remove additional fingerprints. Once setup is complete, a glance at your device or a digital scan will unlock access to Microsoft accounts, core apps, and third-party apps that use the API. Adoption of the FIDO specification means that Microsoft partners can provide security keys for an extra layer of protection when signing in through Windows Hello. The FIDO specification was developed in 2014 by the FIDO Alliance, which now includes more than 250 companies, but was founded by PayPal, Lenovo, Nok Nok Labs, Validity Sensors, Infineon, and Agnitio. FIDO authentication technology is available on hundreds of devices today, according to the group. Microsoft has also supported the latest version of the security protocol, FIDO2. This allows users to access standards-based devices such as USB security keys, which provide an extra layer of protection when signing in to Microsoft accounts.
Who uses Windows Hello?
Windows Hello is designed for both businesses and consumers, and has gained traction on both fronts. At Microsoft's Ignite 2017 conference, the company announced that more than 37 million people are already using Windows Hello, and more than 200 companies have implemented Windows Hello for Business. (At the time, the largest enterprise deployment outside of Microsoft's IT team included more than 25,000 users, according to the company.) These numbers have only increased. Last December, Microsoft called 2020 a "breakthrough year" for Windows Hello, with more than 150 million monthly users as of May 2020, and nearly double that number by the end of the year.
![Comprar Microsoft Edge con Windows Hello]()
IDG/Mark Hachman
Why would you want Windows Hello?
Passwords, in short, are a drag. In this age of password abundance (and human forgetfulness), security-conscious users find that a fingerprint, facial recognition, or iris scan to access devices, important accounts, and data is probably a more secure option. Even so, the password "remains the most widely used login mechanism, but also a source of frustration for end users," he said. Raúl Castañón, a senior analyst at 451 Research, a division of S&P Global Market Intelligence. Microsoft is working with a growing number of service providers to provide their users with a more seamless method of authenticating multiple important accounts with Windows Hello. All Microsoft Office apps are compatible with Windows Hello, as well as third-party tools like Dropbox. Windows Hello has also been integrated with Google Chrome, allowing payment authentication when using the browser on Windows.
What are the hardware requirements?
Windows Hello has a relatively low barrier to entry, but it does come with specific hardware requirements. Surface Pro, Microsoft Surface Book, and most Windows 10 PCs with fingerprint scanners or cameras capable of capturing two-dimensional infrared spectroscopy support Windows Hello. Microsoft is also working with device manufacturers to maintain consistent performance and security for all Windows Hello users, and to establish benchmarks and high-level benchmarks to establish baseline requirements. The acceptable performance range for fingerprint sensors is a false acceptance rate of less than 0,002%, and the acceptable range for facial recognition sensors is a false acceptance rate of less than 0,001%, according to Microsoft. This translates to 1 in 100.000 for fingerprints and half that rate for facial recognition. (For comparison, Apple claims that the odds of cheating on your Face ID are 1 in 1 million, while the odds of cheating on your Touch ID are 1 in 50.000.) Additionally, false rejection rates for facial recognition and fingerprint scanners without vividness detection or anti-spoofing should be less than 5%. False rejection rates from facial recognition and fingerprint scanners with anti-spoofing technology should be less than 10%, according to Microsoft guidelines. For those unfamiliar with the technology, liveness detection does pretty much what it sounds like: it determines that a user is a living thing before unlocking a device or app. All sensors must include anti-spoofing measures, such as sharpness detection, but configuring these anti-spoofing features is optional and varies by system.
How does Windows Hello compare to Face ID?
Windows Hello has no direct competition due to its exclusivity on Windows 10 devices, but it faces indirect competition from Apple, Samsung, Google, and others who provide similar technology for their devices and ecosystems. Apple's Face ID is now used on most iPhones and iPads. (On tablets, it even works in landscape mode.)
![buzón de identificación de rostro]()
Mailbox Third-party apps like Dropbox have updated their apps with support for Face ID. “Windows Hello is very similar to Apple Face ID and Google Android biometrics,” Castañón said. “All three provide biometric authentication on the device; this means that facial or fingerprint data is encrypted and stored on the device and not on a server, which is hackable and therefore inherently insecure. The popularity of Apple's biometric authentication has probably helped drive adoption by drawing attention to the benefits of the technology. “Given the ease of use and the fact that Apple Face ID, probably the best-known facial authentication, has made this mechanism widely known to general consumers, we can expect facial authentication and on-device fingerprinting to continue. gaining ground,” Castañon said. According to Moorhead, Apple's fingerprint and facial ID scanners are the most obvious competitors to Windows Hello, although in his experience, Windows works best in low-light environments. “Face ID works with glasses, not Windows Hello…. Windows Hello works fine in the dark. Face ID, not so much,” he said. “Neither Windows Hello nor Face ID work well in very bright light, but fingerprint scanners work in bright light and in the dark.
What's the next step for Windows Hello in business?
While businesses will benefit from a better and improved user experience, it should be noted that Windows is just one layer of protection at the device level. “This means that it should be viewed as a complement to, and not a replacement for, other security mechanisms that enterprises deploy (for example, at the application level) such as AI-based behavioral biometrics,” Castañón said. Microsoft has indicated that Windows Hello will continue to provide users with password-free access in Windows 11, where it will benefit from the Trusted Platform Module (TPM), a cryptoprocessor chip required on Windows 11 devices. TPM chips will be integrated into Windows 11 devices, motherboards or added to processors and will provide additional security for Windows Hello data at the hardware level."With Windows 11, we will continue to focus on security while helping customers stay safe," Holdsworth said. Windows 11 security and a new hardware database needed to keep our customers safe and secure against the ever-increasing number of sophisticated attacks. "
<p>Copyright © 2021 IDG Communications, Inc.</p>
IDG/Mark Hachman
Mailbox Third-party apps like Dropbox have updated their apps with support for Face ID. “Windows Hello is very similar to Apple Face ID and Google Android biometrics,” Castañón said. “All three provide biometric authentication on the device; this means that facial or fingerprint data is encrypted and stored on the device and not on a server, which is hackable and therefore inherently insecure. The popularity of Apple's biometric authentication has probably helped drive adoption by drawing attention to the benefits of the technology. “Given the ease of use and the fact that Apple Face ID, probably the best-known facial authentication, has made this mechanism widely known to general consumers, we can expect facial authentication and on-device fingerprinting to continue. gaining ground,” Castañon said. According to Moorhead, Apple's fingerprint and facial ID scanners are the most obvious competitors to Windows Hello, although in his experience, Windows works best in low-light environments. “Face ID works with glasses, not Windows Hello…. Windows Hello works fine in the dark. Face ID, not so much,” he said. “Neither Windows Hello nor Face ID work well in very bright light, but fingerprint scanners work in bright light and in the dark.