Google said it has long advocated the use of security keys as the strongest, most phishing-resistant authentication factor for high-value users, especially cloud administrators, to protect against the potentially damaging consequences of credential theft. The new product called the Titan Security Key is now available to Cloud customers and scheduled for general sale in the coming months.
And now the latest version of that security key will be available for the world to use.
After boasting that security keys like Yubico's Yubikey had protected all 85,000 of its employees from every single phishing attack since early 2017, Google has launched its Titan Security Key.
The verification process authenticates logging into the service originally registered with the security key and possessing correct security key.
The hardware security key has two variants: one with a USB support for PCs and another with Bluetooth support for mobile devices. But it'll have its work cut out for it in building the habit among users: earlier this year, Google engineer Grzegorz Milka said that less than 10 percent of Gmail users use two-factor authentication on their accounts.
Saudis halt oil shipments through waterway after Yemen rebel attack
Iran doesn't look like it will take United States sanctions (or a losing proxy war in Yemen ) sitting down. The US in turn vowed to keep the Strait of Hormuz open and not allow Iran to jeopardize world oil supplies.
Hamilton wins in Hungary to stretch F1 title lead
The long straight up to turn one was Ferrari's best and - ultimately - only chance of overtaking Hamilton. He was able to do so until the final laps, by which point Hamilton had eased away for victory.
Explainer: How to save time on a Time Trial
Geez", he exclaimed. "I don't really race just make to the race entertaining. "But it was my own mistake yesterday. Obviously with crashes and misfortune it didn't happen.
The Titan Security Key conforms with FIDO's U2F specification.
Google has already offered users the opportunity to log in with a hardware key created by another manufacturer.
"Context-aware access allows organizations to define and enforce granular access to [Google Cloud Platform] APIs, resources, G Suite, and third-party SaaS apps based on a user's identity, location, and the context of their request".
With 2FA, people accessing an account must prove that they are legitimate by using a device that they physically own (or a physical feature like a fingerprint) to log in.
In terms of Google Cloud security and control over data, Google will also now allow customers to decide in what region data will be stored.