Today at the next conference, Google announced a new product called Titan Security Key, currently available to Cloud customers and scheduled for general sales in the coming months. The key is used to authenticate logins over Bluetooth and USB, similar to existing offers from Yubico and other providers. A Google representative said that the Titan key also contains special firmware developed by Google to verify its authenticity.
"Titan's security key gives you even more peace of mind that your accounts are protected, guaranteed by Google about the integrity of the physical key," Google said in a post that announced the key.
The Titan key is built for the FIDO specification, a long planned authentication standard supported by a variety of apps and browsers. As a result, the device can also be used to sign in to non-Google services, although these services might not be able to exploit the same firmware verification. (Google Accounts have supported security key and other FIDO logins since 201
Users who hope to take advantage of this protection should make sure that they do not allow non-security key logins, which are available through Google's advanced protection program. It is also advisable to keep a new key in protected storage in case the primary key is lost or stolen.
Google has tested the key internally for over a year, but only recently made it available outside of the company. Google employees must log in with physical tokens for security reasons, a system that seems to work. Earlier this week, the company announced that it had not had a single successful account offer since its implementation of policy in 2017.