قالب وردپرس درنا توس
Home / Technology / Google undertakes to file phishing attacks with the new Titan Security Key

Google undertakes to file phishing attacks with the new Titan Security Key



Video: Google is planning VIP security with USB keys

Having claimed that security keys like Yubico's Yubikey had protected all 85,000 of their employees from every single phishing attack since early 2017, Google has launched its Titan Security Key.

Titan's security key reduces the risk that attackers use stolen credentials to access a user's account, as the security key is also required to log in.

Google states that it developed the firmware to verify the integrity of other factor logging, which uses cryptography to ensure that you log in to the site you registered the key with and confirm the key is correct.

Since the keys do not rely on one-time codes, either generated by an app or sent over SMS, there is also less chance that an attacker can guess or catch them.

Google Design Keys will be made available to Google Cloud customers first and will be sold through the Google Store.

Google revealed the key to Google Cloud Next Conference in San Francisco yesterday.

ZDNet's sister site CNET got a short hand on Google's Titan Key and notes that it comes in both USB and Bluetooth variants, both of which will be available in the Google Store in the next months.

Users can purchase a bundle of USB and Bluetooth versions for $ 50, or buy alone for around $ 20 to $ 25 each.

See also: You have been violated: Eight steps to take in the next 48 hours (free PDF)

Previously, Google has promoted Yubikey as a go-to key for the approval of other factors, but Now the company's Titan will offer an alternative. Unlike Google's Titan, Yubikeys Security Keys do not support Bluetooth, but supports USB-A, USB-C, and NFC.

Yubikey gave reasons why he did not support Bluetooth in a new blog, noting that Bluetooth devices need batteries and the certifications it had to pass it felt was too big a barrier.

In addition, there are various technology companies ̵

1; including Apple, Qualcomm and Intel – in the process of fixing a critical Bluetooth error caused by a validation issue with some vendors & # 39; Implementation of cryptographic key exchange, which could allow a man-in-middle attack when two devices pair.

A Google representative told CNET that it does not seem to compete with Yubico or other security key manufacturers, but only

"Titan Key is especially for customers who want security keys and trust in Google," said Sam Srinivas, Product Management Director for information security on google

. "We have long been told the use of security ke ys as the strongest, most phishing-resistant authentication factor for high-quality users, especially cloud admins, to protect against potentially harmful consequences of identity theft," wrote Jennifer Lin, Product Manager in Google Cloud, in a blog post . [19659003] Related: Cybersecurity Strategy Research: Common Tactics, Implementation and Efficiency Issues ( Tech Pro Research)

"Titan's security key gives you even more confidence that your accounts are protected, with Google's security of integrity to the physical key. "

Titan Security Key complies with FIDO's U2F specification. FIDO is the same group contributing to the new W3C WebAuthn standard for the use of security keys, phones and biometry to sign to websites through Chrome, Edge and Firefox.

] Related coverage

Google opens up for Titan's security: Here's how the chip fights hardware backdoors

Google has explained how its new Titan chip can handle threats of the type used by the nationals.

] Google's new Gmail security: If you're a high-end goal, you want to use physical keys

Google will launch a new service to protect politicians and senior executives from sophisticated phishing attacks.

How Google Has Preserved 85K Employees From Being Phished Since 2017 [Technique]

Physical security keys instead of passwords have proven to be effective for Google and other major sites. r.

Google Made Titan Key to Tough Your Online Security (CNET)

Main Key Alert: There is another line of defense against hackers and thieves.


Source link