Stories
Slash Boxes
Comments

SoylentNews is people

Google's Titan Security Key Goes on Sale

posted by martyb on Friday August 31 2018, @04:26AM   Printer-friendly
from the is-it-still-in-beta? dept.

takyon writes:

Google's in-house security key is now available to anyone who wants one

Google's Titan Security Key is finally available to anyone who wants one. The two-factor token went live today in the Google store, with a full kit available for $50, shipping immediately. The kits include a USB key, a Bluetooth key, and various connectors. The key has been available to Google Cloud customers since July, when the project was first publicly announced.

Built to the FIDO standard, the Titan keys work as a second factor for a number of services, including Facebook, Dropbox, and Github. But not surprisingly, they're built particularly for Google account logins, particularly the Advanced Protection Program announced in October. Because the keys verify themselves with a complex handshake rather than a static code, they're far more resistant to phishing attacks than a conventional confirmation code. The key was initially designed for internal Google use, and has been in active use within the company for more than eight months.

Also at TechCrunch, CNBC, and BGR.

Previously: Google Defeats Employee Phishing With Physical Security Keys

Related: No Key, No Login: G Suite Admins Can Now Make FIDO Security Keys Mandatory

Original Submission

 
This discussion has been archived. No new comments can be posted.
Google's Titan Security Key Goes on Sale | Log In/Create an Account | Top | 14 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Interesting) by dbe on Friday August 31 2018, @09:41PM

    by dbe (1422) on Friday August 31 2018, @09:41PM (#728981)

    When i was looking at the 2 factor authentication products I found Onlykey ( https://onlykey.io/ [onlykey.io] ) product and bought a couple to try them out.
    (not affiliated with them)

    The concept seems to be a lot better (from my non-domain specialist eyes) than these keys, they can do FIDO U2F but also google authentication, password storage, PGP message signing... the platform is open source and they have been adding more feature over time. The main advantage is that it let you store passwords so no need for the "cloud storage solutions". To use it you connect, enter a PIN to enable the key and then press/long press the right button (upto 12 of them).

    The other thing is there is a way to duplicate the key content (protected by PGP) and so if your primary key goes bad you are not stuck with re-registering every websites on earth with a new key you just need a second key re-programmed.

    The only "issue" is if you want to use it with a cellphone you have to plug it to work, so you need a USB-OTG adapter ($5).
    Also it works for android phones but not iPhones...

    Has any other soylentils tried it and would like to share their reflections?
    -dbe

    Starting Score:    1  point
    Moderation   +1  
       Interesting=1, Total=1
    Extra 'Interesting' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3