Google Unveils Titan Security Key to Replace 2FA, But Yubico Raises Security Concerns

A Google representative recently revealed that the over 85,000 of the company'due south employees have been using concrete security keys, which are USB-based devices that offer an alternative approach to two-factor authentication (2FA), and it has yielded a high success rate since being deployed in 2017. Google has at present unveiled its very ain concrete security solution chosen the 'Titan Security Fundamental' , which uses the multi-factor authentication Universal 2d Factor (U2F) standard.

The physical manifestation of U2F lets users access unlike services without the demand of entering a countersign received on a linked device. The standard currently has support for Chrome, Firefox and Opera, with more services expected to bound the U2F bandwagon shortly.

Image Courtesy: CNET

Google claims that the Titan Security Key provides a huge convenience when it comes to signing in to secure sites, as users no longer have to rely on receiving a lawmaking on some other registered device such as a smartphone, and can verify their identity by just plugging in the USB key and pressing a cardinal. Google'south security solution has support for multiple devices and apps, has received FIDO (Fast IDentity Online) security certification and employs Google's in-house firmware to verify the integrity of security keys.

"two-step verification with a security fundamental uses cryptography to provide ii-manner verification: it makes certain you're logging into the service you originally registered the security fundamental with, and the service verifies that it'southward the correct security central equally well. This provides superior protection to text-message verification", Google wrote in an official blog post.

Google claims that the Titan Security Fundamental offers a college level of protection against phishing, peculiarly in cases where a malicious party pretends to a be a Google service/page and asks for 2-stride verification codes. Moreover, it volition exist uniform with all forms of Chrome browser and services provided by the likes of Facebook, Dropbox and Microsoft among others. Every bit for availability, the Titan Security Key is already bachelor through Google representatives and will presently be available in Google Stores.

On the other manus, Yubico, a company which is regarded as a pioneer in the domain of concrete security keys, has some doubts regarding Google'south offering, especially the level of security it offers and the vulnerability it hosts.

"Google's offering includes a Bluetooth (BLE) capable fundamental. While Yubico previously initiated development of a BLE security primal, and contributed to the BLE U2F standards work, we decided non to launch the product every bit it does not meet our standards for security, usability and durability. BLE does non provide the security balls levels of NFC and USB, and requires batteries and pairing that offering a poor user experience", read Yubico's official web log post.

Source: https://beebom.com/google-unveils-titan-security-key-to-replace-2fa-but-the-ideas-pioneer-is-doubtful/

Posted by: melansonhunned68.blogspot.com

Share this post