Connect with us

Security

Google now treats iPhones as physical security keys
Advertisement

cybersecurity Security

Network Infrastructure: A rising cyber battleground

cybersecurity Databases Security Servers

US set to restrict China's access to cloud computing - WSJ

Blockchain News Research Security

Alibaba Cloud opens blockchain lab for Web3 game developers in Japan

Mobile Phones Security

Mobile CDMA Technology Finally Goes into Extinction as Mobile GSM, Fixed Wired, VoIP Technologies Take Centre Stage

Advertising Artificial Intelligence cybersecurity Databases Desktops Hardwares Laptops Mobile Phones Mobile Platforms Operating Systems Research Security Servers Softwares Systems Tech News

10 Tips for Keeping Yourself Safe Online

cybersecurity Emerging Tech Internet Security Systems Tech News

Cloudflare launches an eSIM to secure mobile devices

Advertising Business Careers Databases Enterprenuer Finance Internet IT Executives Job Hunters News Operating Systems Security Social Media Softwares Tech Leaders Tech News

How Much Does it Cost to Build a Website?

Internet Security Tech News

Davido reacts to report that WhatsApp users will soon be able to control people who can see when they are online

Internet Research Security Tech News

New Features for More Privacy, More Protection, More Control

Security

Google now treats iPhones as physical security keys

The latest update to Google’s Smart Lock app on iOS means you can now use your iPhone as a physical 2FA security key for logging into Google’s first-party services in Chrome. Once it’s set up, attempting to log in to a Google service on, say, a laptop, will generate a push notification on your nearby iPhone. You’ll then need to unlock your Bluetooth-enabled iPhone and tap a button in Google’s app to authenticate before the login process on your laptop completes. The news was first reported by 9to5Google.

Two-factor authentication is one of the most important steps you can take to secure your online accounts, and provides an additional layer of security beyond a standard username and password. Physical security keys are much more secure than the six digit codes that are in common use today, since these codes can be intercepted almost as easily as passwords themselves. Google already lets you use your Android phone as a physical security key, and now that the functionality is available on iOS it means that anyone with a smartphone now owns a security key without having to buy a dedicated device.

Attempting to log in to a Google service will send a push notification to your phone over Bluetooth.

The new process is similar to the existing Google Prompt functionality, but the key difference is that Smart Lock app works over Bluetooth, rather than connecting via the internet. That means your phone will have to be in relatively close proximity to your laptop for the authentication to work, which provides another layer of security. However, the app itself doesn’t ask for any biometric authentication — if your phone is already unlocked then a nearby attacker could theoretically open the app and authenticate the login attempt.

According to one cryptogopher working at Google, the new functionality makes use of the iPhone processor’s Secure Enclave, which is used to securely store the device’s private keys. The feature was first introduced with the iPhone 5S, and Google’s app says that it requires iOS 10 or later to function.

The new iPhone support appears to be limited to authenticating Google logins from the Chrome browser. When we attempted to use an iPhone to authenticate a login of the same service (we tested with Gmail) using Safari on a MacBook, we were prompted to insert our key fob (which we don’t have), meaning it created an extra step in our login process where we had to pick an alternative 2FA option.

Source:
https://www.theverge.com/2020/1/15/21066768/google-iphone-ios-security-key-2-factor-authentication

Post Views: 408
Related Topics:
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: