Google has now launched support for FIDO Security Key as a way to access your data over two-step (or two-factor) authentication, a simpler way to help secure your data.
Some providers, such as Google for example, offer support for two-factor authentication. This secures your data by breaking the things needed to access your data into multiple parts. So let's think of it like a lock that requires two keys, you can't open the lock with one key, you need both.
So let's think of one key as the password on your account. If this password is leaked out, say for example, you get caught out by a phishing scam and unknowingly hand over your password to somebody wanting to gain access to your account. Well if that were to happen, with two-factor authentication they still couldn't access your data.
Previously, there were only two methods of two-factor authentication on Google accounts, one generated by an app or transmitted to you over the telephone network via SMS, or an automated phone call. So what this means is, if you wanted to login to your Google account with two-step authentication you would enter your password, and if correct you would reach the second factor of authentication. You enter a 6-digit pin on screen, this can either be generated by the Google authenticator app (Android, iOS) connected to your account. Or, it would be sent to you via SMS or an automated phone call. These codes are time based and expire after a few minutes.
Now with Google launching support for the FIDO standard, instead of having a 6-digit code transmitted to you, or generated for you all you need do is enter a FIDO USB key into your computer.
Much like two-factor authentication via generated codes, you can request that Google not ask you again for two-step authentication from a trusted computer. Meaning every time you try to login from your PC at home, or at work you won't be required to enter a 6-digit password or your FIDO key. You will still however be required to complete two-step authentication on new, or unrecognised computers which helps prevent unauthorised access to your data.
FIDO is an open standard, so anybody can build a FIDO key and some are already available on Amazon. There's lots of large companies sponsoring and on the board of the FIDO alliance including Google, Microsoft, Bank of America, Lenovo, Mastercard and many more. We're also expecting to see many more FIDO keys being available in the near future. You can read more about the FIDO alliance here.
A couple of notes to remember, currently you can only use a FIDO key with your Google account on the Google Chrome web browser, or a Chromebook. If you're already a Google for Work user though, chances are you're already using Chrome as your primary browser.
< Read more articles on our Web Academy
Well done Lizzie! Solveway’s Apprentice of the Month!
A huge well done to Lizzie in our Cultrix team for being awarded Solveway Apprenticeships’ Apprentice of the Month for outstanding work and exceptional attitude. Congratulations Lizzie from everyone at Cultrix!
Working from Home Awards
With all this working from home you are doing, we think you deserve some recognition! Earn daily badges for your achievements and share them online with your friends and colleagues.