Blog
home
  • Register

Data Net Blog

When Is a Phone Not a Phone? When It’s a Security Key

When Is a Phone Not a Phone? When It’s a Security Key

I’d be willing to bet that your phone is within reach at the moment, assuming you aren’t actively using it to read this blog right now. The tendency that people have to always have their phones on them has contributed to these devices becoming more deeply integrated into work processes - including security, via two-factor authentication. For this week’s tip, we’ll discuss how you can leverage an Android device as an added security measure.

For some background, it is important to understand that the Android OS now has FIDO2 certification. In essence, the FIDO (or Fast IDentity Online) Alliance has confirmed that Android meets the standards that the group has set for authentication needs.

So, What Does This Mean?

To make what could be a very lengthy conversation much shorter, it means that an Android device with Android 7.0 or higher and the latest version of Google Chrome installed can be used as a security key for your two-factor authentication needs. This also means that a device supported by FIDO2 (such as an Android device, no word on Apple supporting this yet) can leverage an onboard fingerprint scanner to confirm the identity of a user.

In other words, passwords may soon become a thing of the past.

No More Passwords?

While passwords have long been the standard form of identity authentication, they have also been shown to be somewhat simple for a determined cybercriminal to hack in one way or another. Phishing schemes and stolen databases have exposed millions of user accounts, and that’s not even counting all the times a hacker guessed that someone’s password was “letmein.”

The primary weakness of the password is the fact that it can, in fact, be shared. This is why FIDO2 is likely to become a very popular form of authentication… after all, it’s hard to share a thumbprint. FIDO2 also keeps all sensitive data - like the information read from biometrics - within the device itself, preventing it from being snagged from the Internet.

Perhaps most promising, in terms of a user’s security, FIDO2 will not allow a user to use their fingerprint on web domains and websites that are suspect (or just aren’t secure enough).

Using Your FIDO2 Android Device as a Security Key

As you would imagine, there are a few additional security-centric requirements that need to be met before you can leverage your Android device as a security key for authentication purposes. First of all, you need to have at least Android 7.0 installed, with Bluetooth turned on. In addition to this, you’ll also need the latest version of Chrome installed, and a Two-Step Verification-enabled Google account.

Once you’ve logged into your account, access Security. From there, you can activate 2-Step Verification and, you can set your smartphone to be the key required via a short process.

Using Your Phone to Authenticate Google Sign-Ins

With both Bluetooth and Location enabled on your phone, you’ll be prompted by any Google service you try to access to confirm the sign-in on your phone. By simply pressing Yes on your phone and waiting, you can sign-in to your Google account, confident that it has remained secure.

This kind of functionality is only going to appear more and more often, as more developers adopt the FIDO2 standard.

Are you looking forward to using this new authentication method? Let us know in the comments, and don’t forget to suggest any tips you think that we should cover!

The Biggest Problem with VoIP and How It Isn’t a D...
How Blockchain Will Soon Help All Companies
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, July 17, 2019

Captcha Image

Tag Cloud

Tip of the Week Security Best Practices Technology Business Computing Network Security Productivity Malware Privacy Microsoft User Tips Communication Data Google Tech Term Smartphones Internet Efficiency Mobile Device Hardware Hackers Cloud Computer IT Support Email Cybersecurity Windows 10 Software Android Ransomware Communications Innovation Browser Small Business Business Users Mobile Devices Business Management VoIp Passwords Network Managed IT Services Hosted Solutions Smartphone IT Services Outsourced IT Cloud Computing Workplace Tips Wi-Fi Collaboration Applications Social Media Wireless Data recovery Internet of Things Holiday Data Backup Apps Managed IT services Chrome Microsoft Office Bandwidth Backup Employer-Employee Relationship Information Marketing Blockchain Upgrade Patch Management Saving Money Networking Save Money Access Control Laptop Miscellaneous Value Word Gmail Gadgets Remote Monitoring and Management RAM Business Intelligence How To Medical IT Tech Terms Cost Management Virus Healthcare Computers Facebook Processor Net Neutrality Automation Cortana Physical Security Connectivity Phishing Router Managed Service Data Security Company Culture Mobility Wireless Charging Government Remote Computing Artificial Intelligence Voice over Internet Protocol Excel Password Managed IT Service Compliance Office Virtual Assistant Virtualization Scam Data Breach Office 365 Paperless Office G Suite VPN Data Protection BDR Telephony Data Management Telecommute Threat Remote Monitoring Comparison Wearables SSD Education Authorization Workers Health News Amazon Updates Licensing Trends Error Tip of the week Chrome OS Outlook Business Technology Voice over IP OneNote Safety instant Messaging HIPAA Hybrid Cloud Employees Data loss Retail Printing Specifications Live Streaming Microsoft Teams File Sharing Millennials Telephone System Knowledge Certification Battery Big Data Technology Tips Tech Support A.I. Database Cables Profitability Windows Server 2008 R2 Edge SaaS Vulnerabilities Hard Drive Network Attached Storage Environment Solid State Drive HP Spam Paper Remote Support Conferencing Lead Generation IT budget Twitter Cybercrime Cleaning Display Alert Movies Vulnerability Touchscreen Human Resources Eliminating Downtime eCommerce Taskbar Dongle GDPR Cryptocurrency Processors e-waste Hard Disk Drive Document Management Antivirus Ink Personal Information Inventory Managing Stress Machine Learning Tactics Maintenance Plug-In Training Benchmarks Backup and Disaster Recovery Microsoft Office 365 Law Enforcement Telecommuting Employee-Employer Relationship BYOD Sales Help Desk Online Shopping National Security Streaming Media Apple Storage User Tip Windows 7 Spyware disposal Video Staff PowerPoint Content Filtering E-Commerce IT Management Mobile Security Congratulations Troubleshooting Internet Explorer Botnet Proactive IT Security Cameras Server Hard Drives Travel Unified Communications Authentication Electronic Health Records Wireless Internet Tablet Business Continuity Settings Windows Analytics Downloads iPhone Dark Web Time Management Server Management User Security Customer Service Digital Websites Sports Website Reporting Payment WannaCry Operating System WhatsApp Bring Your Own Device Update Analysis Quick Tips WiFi Disaster Recovery Thank You Printers Regulation

Latest News & Events

Please join us in congratulating Bill Vann on his promotion to Customer Success Manager....

Contact Us

Learn more about what Data Net can do for your business.

Call Us Today
Call us today
(760) 466-1200

5795 Kearny Villa Road
San Diego, California 92123