[ad_1]
This is the second day of Google's Next Google 2018 conference in San Francisco – and the Chocolate Factory unveils its defenses to counter hackers and malware.
Titan's two-factor authentication widgets are at the top of the list starting to ship later in the year, consisting of a pair of USB and Bluetooth keychains. They are familiar to those of us who are enrolled in the Google Advanced Protection Program. The Web advertising giant wants to make them broadcast so that people can buy and use them to secure their Google Accounts online.
The keys follow the FIDO standards used by other two-factor gadgets, such as YubiKeys. In addition, Google services check the firmware of a key every time it is used to ensure that it is legitimate. Google has eaten its own dog food with this technology, and insists that its 85,000 employees use gadgets to connect to their business account. It has apparently not had a single successful intrusion via phishing during the past year.
Google was hoping for wider adoption than with two-factor authentication over the phone. Until now, only 10% of Gmail users have multifactorial protection enabled seven years after adding security to the webmail service.
2FA? We've heard about it: White hats shaken by the lack of security accounts in the company
LAD Ehrensvärd, the founder of Yubico, who created YubiKey, said in a blog that his company had welcomed the announcement, and that better security was good for all. But she questioned Google's decision to include a Bluetooth key as well as a USB key.
"Google's offer includes a Bluetooth enabled key (BLE)," she said. "Although Yubico has already initiated the development of a BLE security key and contributed to the standardization work of BLE U2F, we have decided not to launch the product as it does not meet our safety standards. 39, usability and durability. NFC and USB, and requires batteries and coupling that offer a poor user experience. "
Unyielding Cloud
The Chocolate Factory also promised a host of new security features in the upcoming cloud.
Google's Cloud IAM, Cloud IAP and Cloud Identity Services can now test a beta version of Contextual security, which allows administrators to lock accounts if someone is considered a bad player by comparing their location, and introduces a beta version of geolocation blocking in their Cloud Armor suite. , which will prevent foreign fraudsters from logging in.
G Suite users will also have access to a G Suite security center investigation tool and will upgrade Cloud HSMs – hardware security modules – so that clients can "host encryption keys and perform cryptographic operations in FIPS 140-2 Level 3 certified HSMs."
S On the container front, Kubernetes users will be able to sign up for a beta version of Google's binary authorization system, which will require valid digital signatures for the containers before turning them on. In addition, there will also be a container registry vulnerability badysis feature that checks Ubuntu, Debian and Alpine images for exploitable flaws.
People can also beta test armored machines on Google's cloud. This attempts to detect and prevent virtual machines from being subverted or disrupted.
All of these things will happen, promised Google, but the release dates of the companies have not been published. ®
Source link
