site logo
search logo

Channel

Your Details



Contact Us

Blog

Enforce the Use of Security Keys to Help Prevent Account Takeovers with Google

For security, Google has launched Two-factor authentication (2FA) with a FIDO (first ID online) security key that uses cryptography to provide a two-way verification process

Enforce the Use of Security Keys to Help Prevent Account Takeovers with Google

For security, Google has launched Two-factor authentication (2FA) with a FIDO (first ID online) security key that uses cryptography to provide a two-way verification process. The key makes sure that your users are logging into the service they have originally registered the End to end security key with, and the service verifies that it’s the correct security key as well. This process provides superior protection to code-based verification, like SMS and a one-time password (OTP).

 

Simpler to use: 

Security keys help defend against the consequences of phishing attacks and make Two-factor authentication (2FA) easier. Users simply tap the button on their key instead of retyping long lines of codes. Unlike other 2FA methods, also known as multi-factor authentication (MFA), that use one-time codes via text message, security keys don’t require a phone number on users’ accounts.


A must for admins and high-value users:  


G Suite (Corporate mailing solution), Google Cloud Platform (GCP) and Cloud Identity admins as well as users enrolled in the Advanced Protection Program(APP), basically have access to sensitive data and systems. The security keys are available for all users for stronger protection.


Titan Security Key: 


Google Titan Security Keys are basically phishing-resistant two-factor authentication (2FA) devices which will help to protect high-value users such as IT admins. The Titan Security Keys work with popular browsers like Google Chrome, internet explorer and a growing ecosystem of services that support FIDO (first ID online) standards. They are built with a specific hardware chip that includes the firmware which is engineered by Google to verify the integrity of the key. Titan Security Keys are available on the Google Store (Canada, France, Japan, UK, and the US) and through Google Cloud partners.


What are the features available :  


  1. Account Takeover Protection 

  2. Choice

  3. Open Standards 

  4. Admin Controls 


  • Account Takeover Protection: Google has Two-factor authentication (2FA) with a (first ID online) FIDO security key which provides the strongest and more phishing-resistant protection than 2FA with authentication code-based verification, like SMS and one-time password (OTP). Google Security keys send cryptographic proof that users are on a legitimate site and that they have their security key with them.

  •  Choice: The users have a choice of using an Android phone, Titan Security Key, or another compatible FIDO security key to protect the important and sensitive data as well as personal accounts against phishing attacks and account takeovers. This is one of the best features when it comes to security.

 

  •  Open Standard: FIDO(first ID online) security keys are compatible with Google Chrome and other popular browsers like Internet Explorer. You can use this particular key to Authenticate yourself on other sites. 

Example: Facebook, Twitter, etc 

 

  • Admin Controls: Google Security key policies allow Google Cloud Platform, G-Suite, and Cloud identity admins to enforce the use of a security key for sensitive data protection against phishing attacks and account takeovers.


The security key enforcement feature is included in all editions of G Suite and Cloud Identity (which includes for GCP user management and security).


Get our hottest stories delivered to your inbox.

Sign up for Scrabbl Newsletters to get personalized updates on top stories and viral hits.