This is an interesting blog post from Google. I like the idea, but I don’t understand their implementation enough to trust it yet. This seems like a similar concept to Have I Been Pwned, but with username password combined. Can anyone speak to the safety/security of this implementation? It would be nice to have a solution like this for checking passwords in real time.
It’s interesting and Google does have a history of doing things in a secure way. It does serve their interests as well because that can’t properly monetize your existence if you are not you.
Keyword monetize and that is reason for skepticism. Google does nothing for benevolent reasons.