Google’s Cloud Platform Updates Focus on Security Issues

During its Cloud Next 2019 developer conference, Google revealed its Advanced Protection Program would be widely released and Titan Security Keys will be more readily available in retail. The former, which is intended to prevent cyberattacks against high profile targets such as politicians and business leaders, will debut in beta for G Suite, Google Cloud Platform (GCP), and Cloud Identity customers. The Advanced Protection Program “enforces the use” of the Titan Security Key or compatible third-party hardware, blocking access to third-party accounts not approved by admin. Continue reading Google’s Cloud Platform Updates Focus on Security Issues

Password-Free Logins Getting Closer to Becoming a Reality

WebAuthn, with the approval of the World Wide Web Consortium (W3C) and the FIDO Alliance, just became an official web standard for password-free logins. After W3C and the FIDO Alliance first introduced it in November 2015, WebAuthn gained the support of many W3C contributors including Airbnb, Alibaba, Apple, Google, IBM, Intel, Microsoft, Mozilla, PayPal, SoftBank, Tencent and Yubico. With WebAuthn, which is supported by Android and Windows 10, users can log-in via biometrics, mobile devices or FIDO security keys. Continue reading Password-Free Logins Getting Closer to Becoming a Reality

Google Adopts Open-Source, Secure Password-Less Logins

The FIDO Alliance, a consortium for open source authentication standards, is trying to make passwords obsolete, expanding its secure login protocols. Its efforts were boosted by Google’s announcement that it added certified support for the FIDO2 standard, impacting the vast majority of devices running Android 7 or later. That means owners of these Android 7-based devices should be able to log in seamlessly without passwords on mobile browsers such as Chrome. Websites can now be designed to interact with FIDO2 management. Continue reading Google Adopts Open-Source, Secure Password-Less Logins

Google, Yubico Security Keys May Lead to End of Passwords

Swedish-based Yubico, in business for 10 years, debuted its latest online security product, YubiKey 5, a device that plugs into a computer to authenticate the user with a “handshake” that is more secure than a password or authentication code. Google has come out with a similar device, the Titan Key. Both devices can also be used with some smartphones, by plugging into a port or via a wireless communication. These keys are the first arrivals in an Internet security strategy that might displace the password. Continue reading Google, Yubico Security Keys May Lead to End of Passwords

Google Opens Titan Security Key Availability to All Consumers

At its Cloud Next 2018 conference, Google debuted the Titan Security Key, its version of a FIDO (Fast Identity Online) physical device to authenticate logins over Bluetooth. Now, only a few weeks after the announcement, Google has made it available for purchase at $50 in its Google Play Store. Google Cloud enterprise customers have been able to access the Titan Security Key for the past two months. The product comes with a USB key, a Bluetooth Low Energy key, and an adapter for devices with USB Type-C ports. Continue reading Google Opens Titan Security Key Availability to All Consumers

FIDO Certification is First Step for a World Without Passwords

Official FIDO certification for 31 products — from physical devices to login services — has been issued to 18 companies, marking the first certification under the new spec that aims to foster alternatives to password authentication and provide new opportunities for interoperating services. Systems compatible with FIDO can accept logins from any certified device, such as a fingerprint reader or voiceprint detector. Google’s all-purpose login service was certified as a universal two-factor server, and Yubico received certification for two USB security keys. Continue reading FIDO Certification is First Step for a World Without Passwords