Today Google announced that it released two new Titan Security Keys that are built to the highest industry standard FIDO2*. These new keys help you reduce your reliance on passwords as the main form of safeguarding your accounts, and allow for the adoption of Google’s strongest form of protection for high-risk users, their Advanced Protection Program (APP).
If you know anything about DDC and how we help campaigns adopt better cybersecurity, you are well aware that the use of security keys along with enhanced protections like Google’s APP is our number one recommendation as the starting point to avoid hijacked accounts that result in leaked documents and emails and account takeovers for malicious use.
Why is it number one?
The bad actors' primary point of attempted compromise is going to be via accounts both organizational and personal. That means trying to gain access via stealing or otherwise attaining login credentials, such as tricking people into giving passwords through phishing, using a program to crack your password, or depositing malware on your computer that collects keystrokes as you enter your password.
When you use a security key, even if they have your password, hackers can’t get in.
Staffers, volunteers, and others who work on behalf of a candidate or campaign are all considered high-risk computer users. Not all forms of multifactor authentication (MFA) are equally protective. Some methods, such as sending codes via SMS texts or email, are not nearly strong enough to protect your campaign or personal accounts. Security keys, especially with the addition of enhanced protections, are the most phish-resistant and strongest authentication you can implement.
Keys are an easy and convenient way to rapidly upgrade your cybersecurity. For Federal campaigns and other DDC eligible organizations, they are also the cheapest as we can provide security keys from Google or Yubico for FREE.
There is more good news about keys too. One key can be used to secure multiple accounts. The same key you use to protect a Workspace account can be used to secure your personal Gmail account, Facebook account, Twitter account, Microsoft account, and many more across the internet. That’s because of the FIDO standards that are developed around interoperability.
Accounts can have multiple keys connected to them. This can be extremely helpful with accounts that are shared like info email accounts. Everyone who has access can register their key to the account.
DDC recommends that everyone have two keys. One that has access as you use tech all day long, and one as a backup if you lose your primary key. You won’t be asked for a key every time you log in.
Think you're an eligible campaign, email us at info@defendcampaigns.org and we will double check, and if you are, we will get back to you on how to order your free keys and access other free cybersecurity products.
If your campaign is not eligible to receive complimentary keys you can buy them directly at the Google Store.
Learn more about related topics from our Knowledge Base:
What type of key should I get?
How to set up multiple keys on Google shared accounts
Browse our Knowledge Base
About FIDO “The FIDO Alliance is an open industry association with a focused mission: authentication standards to help reduce the world’s over-reliance on passwords. The FIDO Alliance promotes the development of, use of, and compliance with standards for authentication and device attestation.”