Skip to main content
  1. Home
  2. Computing
  3. Mobile
  4. Web
  5. News

Google offers its own ‘Titan’ USB security key for password-free logins

Add as a preferred source on Google
Image used with permission by copyright holder

Google introduced the Titan Security Key during its Google Cloud Next ’18 convention, a physical USB-based device that eliminates the need to enter usernames and passwords. The FIDO-based device includes firmware developed by Google’s engineers that verifies its integrity, so you can log onto your favorite sites worry-free. It’s available now for Google Cloud customers followed by a full mainstream availability “soon.”

“We’ve long advocated the use of security keys as the strongest, most phishing-resistant authentication factor for high-value users, especially cloud admins, to protect against the potentially damaging consequences of credential theft,” the company states.

Recommended Videos

Google’s key is based on the FIDO U2F protocol, short for “universal 2nd factor.” Borrowing from the smart card concept, you merely insert the key into a USB port or tap it against an NFC-compatible smartphone. When you create an online account (or update your existing security preferences), your PC will create two encrypted tokens: one public and one private.

Later when you log into the account, the service containing the public token will send a “challenge” requiring you to touch a button on the key, thus unlocking the private token for verification. There’s no personal information sent across the internet, and the private token used to unlock the service remains solely on the physical key.

Google and Yubico originally developed this protocol along with support by NXP but now its maintained by the FIDO Alliance. Yubico already offers its YubiKey series for desktop and mobile, such as the YubiKey 4 supporting multiple protocols, the Android-friendly YubiKey NEO, and the Security Key with out-of-the-box support for Gmail, Facebook, and more.

That said, Google’s new Titan Security Key will be in direct competition with Yubico’s products. The difference is that one of Google’s models will rely on a Bluetooth Low Energy component, a standard Yubico helped build but decided not to use because “it does not meet our standards for security, usability, and durability.” Bluetooth, according to Yubico, doesn’t offer the same security level as NFC and USB.

There’s no information about the Titan Security Key’s manufacturer, but Google plans to sell both USB- and Bluetooth-based models in a bundle for $50 or separately for around $25 each — possibly in the sub-$10 range in the future. Moreover, the Titan Security Key won’t have anything to do with Google’s Titan-branded chip used to protect cloud-based servers.

“Titan Security Key gives you even more peace of mind that your accounts are protected, with assurance from Google of the integrity of the physical key,” Google says.

Although smartphones are good for two-factor authentication, SMS-based messages can be intercepted. Even more, if your smartphone is lost or damaged, it takes your private keys with it. A USB-based key can get damaged as well, but it can hang on a keychain and doesn’t require a network connection. According to Google, the Bluetooth model can supposedly remain active for six months on a single charge.

Google will initially target customers who need the Titan Security Key the most: Journalists, business executives, politicians, and the like.

Kevin Parrish
Kevin started taking PCs apart in the 90s when Quake was on the way and his PC lacked the required components. Since then…
Claude’s Sonnet 5 is built to do more on its own and cost you less
Better than its predecessor, nearly as good as the flagship, and meaningfully cheaper than both.
Art, Floral Design, Graphics

Every major AI lab is racing to prove its models can work autonomously with minimal hand-holding; we’re now seeing pricing emerge as the next battleground. 

Anthropic just fired its latest shot, Claude Sonnet 5, a model the company says performs nearly as well as its flagship Opus 4.8 at a fraction of the cost.

Read more
Apple Creator Studio adds AI tools across Final Cut Pro, Logic Pro and Pixelmator Pro
Final Cut Pro gets AI captions, Auto Mask and better Pixelmator Pro workflows in Creator Studio update
Computer Hardware, Electronics, Hardware

Apple has introduced a major update to Apple Creator Studio, adding new AI features, deeper Pixelmator Pro integration, and workflow upgrades across Final Cut Pro, Logic Pro, Keynote, Pages, Numbers, Motion, Compressor, Freeform, and Final Cut Camera.

The update makes Creator Studio more useful across Mac, iPad, and iPhone, especially for people who move between video editing, image editing, presentations, documents, spreadsheets, and music production.

Read more
AI browsers like Perplexity Comet can be tricked into spilling your password through BioShocking exploit
Six AI browsers were found leaking saved passwords and many of them haven't fixed it yet.
MacBook Air in hand, Comet browser loaded—let’s see what Perplexity’s AI can really do

Security researchers just found a strange way to trick AI browsers into handing over your passwords. They managed to trick AI browser agents into exposing sensitive data like saved passwords, session cookies, and private tokens by disguising the theft as part of a harmless "game."

The technique is called BioShocking, named after the popular video game BioShock, where a brainwashed character is manipulated into believing a false reality. Once an AI browser falls for the same trick, it stops following its own safety rules entirely.

Read more