How Google Keeps its Workforce Hack-Proof Using Specialised Security Keys

For more a yr, none of Google'due south over 85,000 employees take been hacked, thanks to physical security keys that have replaced ane-fourth dimension codes at their workplace.

Security Keys are USB-based devices that offering an culling approach to two-factor hallmark (2FA).

In 2FA, users log into a website using a countersign and and then enter an additional one-time code usually sent to smartphones. In Google'due south example, the onetime countersign was sent via an in-house app called Google Authenticator.

A Google representative told Krebs on Security that physical security keys are at present being used for all work-related account access since early on 2017.

"Nosotros take had no reported or confirmed account takeovers since implementing security keys at Google," the representative was quoted as saying.

"Users might be asked to authenticate using their security key for many different apps/reasons. It all depends on the sensitivity of the app and the risk of the user at that point in time," the Google representative added.

A concrete security key uses a version of multi-gene hallmark chosen Universal 2nd Factor (U2F). U2F lets users login by inserting the USB device and pushing a button on it.

"After the device is linked to a certain website, users don't have to enter their passwords anymore," CNET reported.

More platforms like Dropbox, Facebook and Github are now using U2F which is an emerging open source authentication standard. It's supported by browsers including Chrome, Firefox and Opera.

Microsoft is likewise reportedly updating its Edge browser to support U2F after this year.

Yubico is one physical security key maker which sells a basic U2F central for $20.

Source: https://beebom.com/google-security-key-workforce/

Posted by: mcabeefalm1952.blogspot.com

Share this post