![]() | |
| Google strengthens Password Security with Security Key Technology |
After 5.6M Gmail users got leaked Google has come to strengthen it's password security with Security Key Technology. The Technology uses FIDO Alliance's Universal 2nd Factor Protocol to enable higher security access.
While in this age of Data breach, two-factor authentication is generally considered to be the best way to tighten user security. So we can say this is a Big move from search Giant. Sometimes ago iPhone maker introduced two-factor authentication after the Apple iCloud Celebrity Nude Photo Hack, it's now Google's turn.
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F, Google's Chrome users will now be able to secure access to Google accounts by way of a physical USB security key device - See more at: http://www.eweek.com/security/google-locks-down-passwords-with-security-key-technology.html#sthash.FblRAQsL.dpuf
With U2F Google Chrome users will be now able to to secure access to Google Accounts by a way of the USB security Key Device.
Till now Google used their own authenticator system to authenticate the users. Google authenticator is a Mobile App that provides users with a One Time Password that is used as the Second Password for access.
Sam Srinivas, vice president of FIDO Alliance and director of Product Management in Google, said that it will be more secured than the Google Authenticator.
USB Key is a USB Device which can be connected with a Google account for getting cryptographic key. Third Party vendors Yubico and Duo Security have also launched some USB products in the market which are compatible with FIDO U2F.
Using method of this device is also so simple. All you need to do is plug in and connect it with your Google Account and you get signed in. Simple enough.
Srinivas also said that the key is also not Phishable. Hacker can't trick the user to put Google Authentication code or SMS to hack the account. So it's quite sure, this anti-phishing adds an extra security layer to Google User Security.
Though Google Chrome is the only browser using the U2F technology of FIDO but other major browsers like Firefox, Safari, IE are also free to use. According to Srinivas, attackers won't be able to access the user credentials. They can only see Signature Request coming from the Web browser and going to the USB device and returning back after signing the Key. The Signature Request is tied to the specific session on a specific browser. Thus U2F technology won't give chance the attacker to intercept a transmission to use it on another machine for accessing User's account.
Srinivas also said that using USB key device is an optional choice. Users can still use Google Authenticator if they want. That's right, Google Authenticator is still in the Game. But to tighten the security and making your Google account unhackable Google recommend to use USB Key.

0 comments:
Post a Comment