Google starts selling $ 50 & # 039; Titan & # 039; USB security keys

The Titan security key, which comes with USB and Bluetooth versions, is now on sale for $ 50 at the Google online store.

Google began selling its own USB security keys in an attempt to prevent customer accounts from being pirated.

The Titan security key, which comes with USB and Bluetooth versions, is now on sale for $ 50 at the Google online store.

The USB security key works with desktop machines, and the Bluetooth version with mobile devices, and the package also comes with a USB-C to USB-A adapter and a USB-C to USB-A connection cable.

Scroll down to watch the video

The Titan security key, which comes with USB and Bluetooth versions, is now on sale for $ 50 at the Google online store.

The Titan security key, which comes with USB and Bluetooth versions, is now on sale for $ 50 at the Google online store.

"We are very confident about the quality of security," said Christiaan Brand, Google's product manager for identity and security.

"We are very sure of how we store secrets and how difficult it would be for an attacker to enter and fly security."

The Titan It should work on any device with a USB port or a Bluetooth connection.

"The security keys of Titan have a special extra sauce from Google firmware that is embedded in a hardware chip inside the key that helps verify that the key has not been tampered with," says the firm.

It comes a day after Google said that it has managed to completely stop the piracy of its employees' account by requiring them to use physical security keys.

In 2017, the technology giant began delivering physical security keys to the 85,000 employees, according to KrebsOnSecurity.

Security keys are inexpensive USB-based devices that often cost less than $ 20 and require the user to log into a website using something they know (the password) and something they have (for example, a mobile device) or a USB key).

And since then, no employees have reported confirmed acquisitions of work-related accounts, Google said.

Google's advanced protection features include an option to require a USB physical security key to connect to a desktop computer before each login as a way to verify a user's identity.

Researchers say that protecting your account with a password is often not enough, and technology companies have developed new methods, which often require a mobile phone or a hardware key, such as the security key system used by Google.

A spokesperson for Google said that the security keys now form the basis of all access to the Google account.

"We have not had notifications or confirmed account checks since we implemented security keys in Google," the spokesperson said.

& # 39; You can ask users to authenticate using their security key for different applications / reasons. Everything depends on the sensitivity of the application and the risk of the user at that time. "

HOW CAN I USE GOOGLE'S ADVANCED PROTECTION SYSTEM?

The advanced protection features include an option to require a USB physical security key to connect to a desktop computer before each login as a way to verify a user's identity.

Mobile logins will require a Bluetooth wireless device.

Two security keys are required to sign up, so you will have a backup key in case you lose your primary key.

A wireless-enabled key that can connect to both your computer and your mobile devices should be your primary key, says Google.

Users with advanced protection will not be able to access their data from any application that does not belong to Google, such as the Apple iOS email client or Microsoft Outlook.

The program also includes a more painstaking and detailed account recovery process to prevent fraudulent access by hackers who try to gain access by pretending they have been blocked.

Google created a web page to guide users through advanced protection settings, including where to buy USB and Bluetooth security keys on Amazon.

The idea, known as two-factor authentication, means that even if hackers know your password, they still can not log in to your account unless they also hack or possess that second factor, usually your phone or USB key.

The most common forms of 2FA require the user to supplement a password with a unique code sent to their mobile device through a text message or application.

The security key used by Google uses a form of multi-factor authentication known as Universal 2nd Factor (U2F), which allows the user to complete the login process by simply inserting the USB device and pressing a button on the device.

Sites that include Dropbox, Facebook, Github and Google services are compatible with the new devices, and more are added every day.

Currently, U2F is compatible with Chrome, Firefox and Opera.

Microsoft says it expects to implement updates in its flagship Edge browser to support U2F later this year.

Apple has not yet said when or if it will support the standard in its Safari browser.

For non-employees, Google, from Alphabet, offers an "advanced protection program" to provide stronger email security for some users, such as government officials, political activists and journalists who are at greater risk of being attacked by Sophisticated hackers.

The $ 20 Yubikey that can be used on a desktop computer

The $ 20 Yubikey that can be used on a desktop computer

The $ 20 Yubikey that can be used on a desktop computer

Google users can choose security settings to protect Gmail, Google Drive and YouTube data from phishing attacks.

The advanced protection features include an option to require a USB physical security key to connect to a desktop computer before each login as a way to verify a user's identity.

Mobile logins will require a Bluetooth wireless device.

Users with advanced protection will not be able to access their data from any application that does not belong to Google, such as the Apple iOS email client or Microsoft Outlook.

The program also includes a more painstaking and detailed account recovery process to prevent fraudulent access by hackers who try to gain access by pretending they have been blocked.

Although Google has previously admitted the use of security keys for what is known as two-factor authentication, advanced protection users will not have a backup login method available if they lose their keys in addition to the full recovery process. account.

The launch of a set of new email security services follows the US presidential election last year, in part due to the revelation of emails belonging to Democratic candidate Hillary Clinton's associates that were obtained through schemes of phishing.

US intelligence agencies have concluded that those attacks, which included a violation of Gmail's personal account by John Podesta's campaign manager, were carried out by Russia as part of a broader cyber campaign to help Donald Trump, a Republican, to win the White House.

"If John Podesta had Advanced Protection last year, the world could be a very different place," said Joseph Lorenzo Hall, chief technologist at the Center for Democracy and Technology, who was informed about the new features of Google.

Hall said the new features would increase the number of high-risk consumers with strong protections against phishing campaigns.

But he noted that they can create compatibility problems among some that already integrate custom security tools with their Google products.

Google created a web page, g.co/advancedprotection, to guide users through advanced protection settings, including where to buy USB and Bluetooth security keys on Amazon.

.