San Francisco: For more than a year, none of Google's over 85,000 employees have been hacked, thanks to physical security keys that have replaced one-time codes at their workplace.
Security Keys are USB-based devices that offer an alternative approach to two-factor authentication (2FA).
In 2FA, users log into a website using a password and then enter an additional one-time code usually sent to smartphones. In Google's case, the one-time password was sent via an in-house app called Google Authenticator.
A Google representative told Krebs on Security that physical security keys are now being used for all work-related account access since early 2017.
"We have had no reported or confirmed account takeovers since implementing security keys at Google," the representative was quoted as saying.
"Users might be asked to authenticate using their security key for many different apps/reasons. It all depends on the sensitivity of the app and the risk of the user at that point in time," the Google representative added.
A physical security key uses a version of multi-factor authentication called Universal 2nd Factor (U2F).
U2F lets users login by inserting the USB device and pushing a button on it.
"After the device is linked to a certain website, users don't have to enter their passwords anymore," CNET reported.
More platforms like Dropbox, Facebook and Github are now using U2F which is an emerging open source authentication standard. It's supported by browsers including Chrome, Firefox and Opera.
Microsoft is also reportedly updating its Edge browser to support U2F later this year.
Yubico is one physical security key maker which sells a basic U2F key for $20.
Catch up on all the latest <a title="mid-day news" href="https://www.mid-ay.com/news" target="_blank">Crime, National, International and Hatke news</a> here. Also download the new mid-day <a title="mid-day android app " href="https://goo.gl/8Xlcvr" target="_blank">Android</a> and <a title="mid-day iOS app" href="https://goo.gl/KQziH4" target="_blank">iOS</a> apps to get latest updates
This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever

In 2FA, users log into a website using a password and then enter an additional one-time code usually sent to smartphones. In Google's case, the one-time password was sent via an in-house app called Google Authenticator

Physical security keys protect Google workforce from hacking

Trending Stories

Latest Photos

Latest Videos

Latest Web Stories

Mid-Day Fast

Home / Technology / Article / Physical security keys protect Google workforce from hacking

Physical security keys protect Google workforce from hacking

Trending Stories

Latest Photos

Latest Videos

Latest Web Stories

Mid-Day Fast