Good idea. The first time I heard about this method was with Blizzard for World of Warcraft a decade ago (2008). Blizzard's key generated a number you then enter into the game, back then.
There are other models available from other manufacturers that you can use. The reason, quite ironically, that Google decided to build one themselves is because these other manufacturers can't be trusted. I mean with some people choosing to save passwords for other websites on their Google account for convenience, a hack would pretty much cost you your entire online profile. Not to mention bank & crypto accounts alongwith credit card information saved in Google Pay/Play Store.
I feel like this was more of a review of multifactor authentication in general, which is great and absolutely a worthwhile topic, but I would have loved to see a bit more commentary on how you feel this device stacks up to using a 3rd party 2FA key that might be cheaper or have different features. oh well. You're still doing the lord's work by recommending any additional security to the general public.
$50 ?? When I worked at Google, they literally handed these out like candy. Walk into any tech support office, and there is a bowl of these devices sitting on the counter. They put out those bowls so that employees can grab as many as they need for work. They gave away security keys to employees because keeping Google's internal networks secure is way too valuable for ANY price barrier to slow down the employee adoption of security keys. Why are they not doing something similar for the public? They should be selling these things at cost. $50 is just mind-blowing.
It would be REALLY useful it it worked across all websites, and instead of logging in, you just needed to have the key inserted. That way, you could just keep the key in your PC and you'd never need to log in again.
At least Google came up with something that can protect you from most of the phishing attacks. Unlike some company who claims to be so hard to be hacked but always have their users' information phished out. Phishing is far worse of a threat for now.
@⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻ how do you think they make money? most websites that have adds take info and sell it to advertisers
Two things 1. If you’re going to do a close up of your hand make sure nail beds don’t look like an infection from a zombie movie 2. How much did Google pay you for this ad?
I bought one of these devices in October and set it up, worked just fine at the time.Twice today I have been asked to insert my Titan security key to log into a Google site, and both times NOTHING happened, had to use an alternate 2FA to log in. I feel like I've been totally ripped off, $50 down the drain. I was already feeling faintly remorseful about buying this device, now I KNOW I've been shafted. Contact Google to get help? Maybe return a faulty device? HA HA HA HA HAAAAAAAAA!!! Their "contact us" site is utterly impenetrable. Compare Google's customer service with Amazon, or even eBay? Poor. 0/10 Google.
The question posed by this demo is should you buy it? No, and I will give you 2 reasons. 1 reason is that Yubikey5 already does all this in 1 device and supports pretty much all the other 2FA protocols. It works with Google, Protonmail, Fastmail, OpenPGP, LastPass, PasswordSafe etc. It uses NFC instead of Bluetooth. So you can have a single, smaller USB device that is un-associated with google that works on a multitude of of protocols and services. So Yubikey have solved the 2FA problem. I have a primary and backup Yubikey 5 NFC as my 2FA & happy with it. This vidoe does not mention how many of the Two-Factor-Authenication protocols it supports so that is something we would like to know?
All these people commenting how this is a terrible idea are the same people who use the word password as their password and would be the first to blame Google when their account gets hacked.
@@alexpadillayt I'm using the Yubikey 4. It doesn't have Bluetooth as I don't need it. Yes you can add multiple accounts. If not mistaken, there's no exact maximum number that you can add. I've my google, fb, lastpass, dropbox, and several others added
That's why there are two in the bundle. "One is none, two is one"! Register two, put one in a safe (place) incase you lose the one you carry about with you.
7 years ago banks in China offer this type of security USB for online login. And there has been various USB keys already. I can't believe this guy making it sound like it's a new stuff.
Meh, I'm not worried about someone stealing my information. Chances are low, and you can fix it, even tho it's a pain in the butt sometimes. However, I think the tech is sound. I think the tech should be in phones or watches, because you always have them on you.
I don't get it. I was saving my passwords onto an ordinary USB stick way back when they first became available and I used to use the banking dongle which has been around for decades.. This is very much a combination of both . Did Google come up with this to make money? To collect more personal information off everyone or because they are trying to keep up with Apples security techniques or are they genuinely concerned about our personal cyber security?
So when will we have to use a nuclear authentication briefcase will 2 synchronous turn keys one being kept by you, the other a representative of google
This is actually a good idea. It removes a need for a VPN (yet you still should use one) in a public scenario. Plus if you work as a social worker or have sensitive information on you of yourself or others as a job, this should be mandatory.
I set up a paper based one-time password system for one of my projects. It works like a charm, and there are no hardware issues, because there is none!
What is wrong with a fingerprint scanner & password combination; we already have fingerprint scanners on phones and we could connect our phone to our laptop or pc...but then there would be nothing to sell.
Google needs to release the full schematics and source code for this to be trustworthy. Should be easy for such a simple device, unless they're hiding something.
That's exactly how it works. $50 includes two completely independent keys, and you can buy extras from Google or anyone offering U2F keys, such as YubiKey.
That is the dumbest statement ever. Google's security is top-notch. Does anyone remember the ORIGINAL Microsoft Internet Explorer? The one that was so bad that the U.S. government warned not to use it? The one that could only be updated during operating system updates, and always had a bazillion zero-day attacks waiting to be discovered, due to the fact that it had coding dating back to MS-DOS inside it? Compare with Google Chrome, which looks for security updates every time it's closed and reopened, and which tells you in the top right corner when there's a new update ready (which you should do ASAP, because usually it provides more safety). Google has been very active in computer and browser security, and has been building anti-pfishing into email, etc. If you have a gripe about Google security, what is the product? And what is your specific complaint?
I will never buy this. Google already knows where we are every moment of everyday knowing they will know when we unlock our doors. Who knew that Big Brother would be in business as well as in government.
Can't see how it increases security compared to a two step verification with your smartphone. If i had to choose I'd rather carry just the smartphone and not both smartphone and key. Still, if somehow steals my smartphone it's very likely that the smartphone is locked. Don't know what happens with the key, do you have to unlock it before using it?
If you have any tech skills, please check out the Yubi Key before ordering this. Don't get me wrong, I like Google Chrome. What I do not understand is why Google went to the trouble of creating something that already existed. It didn't even previously exist, it existed at a higher level of security, easy to use format. Possibly they created this since their MO is to have every single thing that is done on a Mac or Windows Laptop computer, work in a Chromebook, use their Google Docs, Google Drive, etc.. In fact I'm writing this note on a Chromebook, which I like a lot. What I'm getting to is the Yubi Key requires you use a little program that needs to be downloaded onto a Mac or Windows machine. Then you have the full advantage of the Yubi Key. Once you program the Yubi Key on a Mac or Windows machine, it will work fine on your Chromebook. It currently must be programmed on a Windows or Mac. If you want your account PW to be entered with a press of the button. The Titan will not enter your PW. The Titan is NOT programmable. The Titan costs the same as a Yubi Key. The advantage that Yubi key has is YUBI KEY is PROGRAMABLE. I repeat myself in saying I have been using Yubi keys for over 8 years. The Yubi Key has everything this Chrome Titan key has, except there are TWO Slots in the Yubi key. The First Slot in the Yubi Key is IDENTICAL to the Titan Key, it does not have to be programmed. The second slot is where the Yubi key excels over the Titan. It allows the owner to store a password that may be up to 38 characters long. There is a longer learning curve with the Yubi Key. The Yubi Key is not programmable on a Chromebook. Google elected to sell a DUMBED DOWN version of the Yubi Key. If anyone from Yubi Key is reading this, why isn't there a little app for Apple/Android store to program a Yubi Key, so a Mac/Windows machine would not be required? With Google coming out with this product, you are going to have some competition, even if your product is superior. If you purchase a Yubi Key, it may be used precisely as a Titan key, and no programming is required. However the Titan key will not enter your account PW, as a Yubi Key will, and the PW may be up to 38 characters. It is a given that many accounts do not require the security of a 38 character PW. Then again, many do.
I think that Google producing their own product with their branding will help with adoption. Currently there is not a lot of support for keys but hopefully this will help change that. Having passwords stored on the key is not a good idea. You've basically created a single point of failure.
I don’t see how this stops phishing attack’s? As I see it, it only stops entry to sites. Email phishing is still possible? This is only a different 2 factor authentic method, bettering mobile application This is YUBI key only with mobile BT key fob
Good to know that we went full circle from passwords and is back to lock and keys now.
you sir have won the Internet today. that comment is gold 😂😂😂😂
Bang on!
it's still not a real key though... more like a rip off
😂😂
isnt it both?
Better make this key a wearable. Maybe a cool ring
Or add the feature to the smart watches
Pixel watch isn't coming this year.
But Google's pixelbook has this feature.
hail the mark of the beast
Get a ring with NFC.
Can it secure my sandwich
The Twins Gamer no I will steal it
Yes
I would loose the key in 2 days and be locked out of every thing.😣
thats my only worry
3-5 Days? You mean MONTHS?
me with a gmail which barely receives emails: I’ll take your entire stock
Good idea. The first time I heard about this method was with Blizzard for World of Warcraft a decade ago (2008). Blizzard's key generated a number you then enter into the game, back then.
And who's selling it? Google, yeah. Nice joke 😂😂😂😂 RIP privacy.
Lol ikr
So the key is a way to collect data on you smart
but it's for your GOOGLE account
There are other models available from other manufacturers that you can use. The reason, quite ironically, that Google decided to build one themselves is because these other manufacturers can't be trusted.
I mean with some people choosing to save passwords for other websites on their Google account for convenience, a hack would pretty much cost you your entire online profile. Not to mention bank & crypto accounts alongwith credit card information saved in Google Pay/Play Store.
Someone Here you clearly don't know how u2f keys works
By buying this key ONLY Google (NSA, FBI, CIA...) will read my emails right? But no other ordinary civilian. Interesting!
I feel like this was more of a review of multifactor authentication in general, which is great and absolutely a worthwhile topic, but I would have loved to see a bit more commentary on how you feel this device stacks up to using a 3rd party 2FA key that might be cheaper or have different features.
oh well. You're still doing the lord's work by recommending any additional security to the general public.
There's something called, backup codes. So when you lost/forgot it... Just a little FYI
This guy sounds like a google sales man lol
$50 ?? When I worked at Google, they literally handed these out like candy. Walk into any tech support office, and there is a bowl of these devices sitting on the counter. They put out those bowls so that employees can grab as many as they need for work. They gave away security keys to employees because keeping Google's internal networks secure is way too valuable for ANY price barrier to slow down the employee adoption of security keys. Why are they not doing something similar for the public? They should be selling these things at cost. $50 is just mind-blowing.
I'm gonna lose it, probably when I need it the most
It would be REALLY useful it it worked across all websites, and instead of logging in, you just needed to have the key inserted. That way, you could just keep the key in your PC and you'd never need to log in again.
then if your pc was compromised hackers could get in.
At least Google came up with something that can protect you from most of the phishing attacks. Unlike some company who claims to be so hard to be hacked but always have their users' information phished out.
Phishing is far worse of a threat for now.
i know it's been three years but still yay :D
Do you recommend it?
@@hamed7163 I recommend being cautious about your own usage. That's the best way to internet security! 😌
"Both work so long as you have Google Chrome installed..."
Sacrificing privacy for security.
Every app and every website take your info and sell it to advertisers so no it would not matter anyway
How else would you expect a **Google** key to work?
@⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻⸻ how do you think they make money? most websites that have adds take info and sell it to advertisers
Somehow I'll have trouble setting this up.
Watch a tutorial on how to set it up. Ain't that hard
I would've helped you....
@@harjeesingh01 doesn’t matter. Even after successfully setting up this scrap doesn`t works. It`s garbage
So we go full circle now...back to the key....next step Google is going to sell us their Google Vault
Two things
1. If you’re going to do a close up of your hand make sure nail beds don’t look like an infection from a zombie movie
2. How much did Google pay you for this ad?
I bought one of these devices in October and set it up, worked just fine at the time.Twice today I have been asked to insert my Titan security key to log into a Google site, and both times NOTHING happened, had to use an alternate 2FA to log in. I feel like I've been totally ripped off, $50 down the drain. I was already feeling faintly remorseful about buying this device, now I KNOW I've been shafted.
Contact Google to get help? Maybe return a faulty device? HA HA HA HA HAAAAAAAAA!!! Their "contact us" site is utterly impenetrable. Compare Google's customer service with Amazon, or even eBay? Poor. 0/10 Google.
The question posed by this demo is should you buy it? No, and I will give you 2 reasons. 1 reason is that Yubikey5 already does all this in 1 device and supports pretty much all the other 2FA protocols. It works with Google, Protonmail, Fastmail, OpenPGP, LastPass, PasswordSafe etc. It uses NFC instead of Bluetooth. So you can have a single, smaller USB device that is un-associated with google that works on a multitude of of protocols and services. So Yubikey have solved the 2FA problem. I have a primary and backup Yubikey 5 NFC as my 2FA & happy with it. This vidoe does not mention how many of the Two-Factor-Authenication protocols it supports so that is something we would like to know?
Forgot my 2nd reason, google took out ¨Don´t be evil¨ for a reason;-) trust them at your own peril.
Who needs that when your phone blows up every time someone try’s to log in on your google account
All these people commenting how this is a terrible idea are the same people who use the word password as their password and would be the first to blame Google when their account gets hacked.
Instructions unclear: set house on fire.
Yubi keys are cheaper and still work with all of Google toys
Agree. Have been using Yubikeys for the past 2 years
@@harizsharizal3115 which one do you have does it still work today and is there a Bluetooth version and is it possible to add two accounts?
@@alexpadillayt I'm using the Yubikey 4. It doesn't have Bluetooth as I don't need it. Yes you can add multiple accounts. If not mistaken, there's no exact maximum number that you can add. I've my google, fb, lastpass, dropbox, and several others added
@@harizsharizal3115, how do you use it with smartphone? 😅
@@harizsharizal3115 ok thank you 👍
Switch the paradigm around.
Carry your system on a key and just boot it on any machine.
Google key, no.
Good idea
Yup
Or, the non-destructive option; TAILS.
So at the end, is this a direction for hackers? They just have to wait 5 days until google support disables that key?
Mine has been working flawlessly for over four years.
already Loged In,very funny. This is how you loosing your accounts
What if you lose your key ?
You pay for your sins
No No just give up on life
As long as you are logged in from your smartphone or laptop, you can go, verify yourself and remove the key.
That's why there are two in the bundle. "One is none, two is one"! Register two, put one in a safe (place) incase you lose the one you carry about with you.
@@j_thom so what if u put both in a pocket and get Rob. U lose both.
1:32 "send SMS instead"... Great security.
What if the attacker compromises the device where you're already logged in.
Like man in the browser attack...
Is anyone else noticing how outdated his laptop looks?!
Does it even matter?
If it perform his tasks well then I don't see any issue or problem.
You can still a billion dollar business on this
I use a a business laptop from 2011 and it runs just fine
outdated?
Trendy mentality: when a people wants latest stuffs.
lost me when need a google chrome web browser
Works with opera too tho not officially.
You need a Chrome browser just to register it (Once only). After than, you can use basically any browser to login such as FireFox and Opera
Lost me at the word “Google”
...says the guy on Google-owned RUclips?
Le Visionarium
Keep crying
Lock out for the day??? Tf bro I wouldn't be standing outside all day . Brake the pinche window YO!
How does it work if you loose your key?
Please make it wearable, it would be super nice
@1:24 ..someone should've said ok maybe let's NOT do a close up of his fingers.
That's what I am talking about. 2 step authentication, LastPass secure passwords AND Titan key.
Well, what if it’s stolen? Your Google, Facebook , any think support this super ultimate safe key, will be a public magazine!
Who leaves there keys at home... lol
....as long as you use Chrome as a web browser ......Chrome as a web browser ...............
7 years ago banks in China offer this type of security USB for online login. And there has been various USB keys already. I can't believe this guy making it sound like it's a new stuff.
But what if someone see’s your email address and then you forget the key and they take it and boom your account is screwed
You would be in a office or cafe or outside for this to happen btw
Meh, I'm not worried about someone stealing my information. Chances are low, and you can fix it, even tho it's a pain in the butt sometimes. However, I think the tech is sound. I think the tech should be in phones or watches, because you always have them on you.
You can't just "fix it", once data is in someone else's hands, you can never take it back
Bain: "Alright, now steal the key. We'll use it to get into his account and shut off his connections"
Google has a Yubikey? Eh, I'll stick to Yubikey
No single thought on using it to protect bank accounts cause Facebook is more important than your money...
And still NSA, CIA, Russian stat and Chinese state tracks all your keystrokes and data . These are just waste of money.
so you're screwed if you lose it or forget it
Is there anything that i could put on my router or to stop hackers geting in to wifi and smart tv..
Google WANTS you to be dependent on them.
So does Amazon
So does Apple and Microsoft
Every company wants that...
Why extra hardware then , use the existing fingerprint scanner that available on most phones or laptops
Umm...who the heck leaves their keys at home?!?!?!?
I don't get it. I was saving my passwords onto an ordinary USB stick way back when they first became available and I used to use the banking dongle which has been around for decades.. This is very much a combination of both . Did Google come up with this to make money? To collect more personal information off everyone or because they are trying to keep up with Apples security techniques or are they genuinely concerned about our personal cyber security?
So when will we have to use a nuclear authentication briefcase will 2 synchronous turn keys one being kept by you, the other a representative of google
much cheaper and better alternatives. Didn't tell the whole picture, felt like an advert. Also don't use the same password at different sites.
I was searching for Attack on Titan and this popped up, huh
Nobody wants to be more dependent on Google. Thats a junk idea + I can only imagine the process needed to replace that key.
This is actually a good idea. It removes a need for a VPN (yet you still should use one) in a public scenario. Plus if you work as a social worker or have sensitive information on you of yourself or others as a job, this should be mandatory.
Noneshere you don't have to rely on google for the key... it's an open standard called u2f the most popular key producer is called yubico
If you think this replaces a VPN, you have no idea what a VPN does.
Dependency lol.
@@armandssaulitis6951 VPN for privacy, titan key for security.
Hillary needed this 2 years ago 😂
These are a great way to make sure anyone with the right kind of scanner can hack your stuff. Not a great idea!
What happends if the usb key get physically damagged or I lost it?
Is having two-facotr enough, and what is the most secure of those secondary factors. TIA
I set up a paper based one-time password system for one of my projects. It works like a charm, and there are no hardware issues, because there is none!
A chain is as strong as the weakest link.
worth buying or yubico is good too...secures your account...and its not expensive...buy 2...so if u lose one you have a spare....
Anyone else glance at the thumbnail and think it looked like the original Playstation?
It's just a copy of the Yubikey from Yubico that have been around for years, guess Google is out again to remove a competitor.
waves audio apps used similar tech almost 15 years ago
I'd definitely lose it, no thanks
What is wrong with a fingerprint scanner & password combination; we already have fingerprint scanners on phones and we could connect our phone to our laptop or pc...but then there would be nothing to sell.
This key is just an 2 factor authentication without an input / with an automated input. Buy it if your to lazy to get you phone out and type 6 numbers
Looks like a pretty cool gadget to have. Maybe I’ll buy it in the future.
If you have to use Chrome browser and can't use Firefox or other browsers, than to heck with Google's hardware.
Google needs to release the full schematics and source code for this to be trustworthy. Should be easy for such a simple device, unless they're hiding something.
So you want to hand over the schematics to Russian hackers? Brilliant idea.
Also, they could have designed that multiple keys can be used at the same time. One at home, one at the office, etc.
That's exactly how it works. $50 includes two completely independent keys, and you can buy extras from Google or anyone offering U2F keys, such as YubiKey.
Clever camera angle when he looks like he is talking to the third person
They should have something like that for cars and scooter. Electronic keys. Even door locks with metal sealing.
Elon musk gonna use like 100 keys to log in his account lol
I would use it! “GET OFF MY GMAIL YA KIDS”
This is literally the last company you should give security details to... Ever!
That is the dumbest statement ever. Google's security is top-notch. Does anyone remember the ORIGINAL Microsoft Internet Explorer? The one that was so bad that the U.S. government warned not to use it? The one that could only be updated during operating system updates, and always had a bazillion zero-day attacks waiting to be discovered, due to the fact that it had coding dating back to MS-DOS inside it?
Compare with Google Chrome, which looks for security updates every time it's closed and reopened, and which tells you in the top right corner when there's a new update ready (which you should do ASAP, because usually it provides more safety).
Google has been very active in computer and browser security, and has been building anti-pfishing into email, etc.
If you have a gripe about Google security, what is the product? And what is your specific complaint?
0:47 I think there's a way to do it in Firefox with an extension, but I'm not sure.
Will this option help skip having a number associated with the account?
We all know who this was made for lol
Great... So, basically, the convenience of the cloud is diminished. Now I have to walk around with a damn key just to log in?? STUPID
I will never buy this. Google already knows where we are every moment of everyday knowing they will know when we unlock our doors. Who knew that Big Brother would be in business as well as in government.
These are being used by corporations that adopt g-suite as their primary business suite already.
2 factor authentication keys cost a lot less than $50
Where do I get these keys? Do I have to order them or could I maybe get them at Wal-Mart or something
Can this be used for your online banking accounts too? How about PC games?
To add an extra layer of security make the key biometric
is this because receiving a text is somehow an insecure version of 2FA?
Did you seriously just review a key fob and not even mention how it can be backed up, whether it can use duplicate keys, etc...
Can't see how it increases security compared to a two step verification with your smartphone.
If i had to choose I'd rather carry just the smartphone and not both smartphone and key.
Still, if somehow steals my smartphone it's very likely that the smartphone is locked. Don't know what happens with the key, do you have to unlock it before using it?
If you have any tech skills, please check out the Yubi Key before ordering this. Don't get me wrong, I like Google Chrome. What I do not understand is why Google went to the trouble of creating something that already existed. It didn't even previously exist, it existed at a higher level of security, easy to use format. Possibly they created this since their MO is to have every single thing that is done on a Mac or Windows Laptop computer, work in a Chromebook, use their Google Docs, Google Drive, etc.. In fact I'm writing this note on a Chromebook, which I like a lot. What I'm getting to is the Yubi Key requires you use a little program that needs to be downloaded onto a Mac or Windows machine. Then you have the full advantage of the Yubi Key. Once you program the Yubi Key on a Mac or Windows machine, it will work fine on your Chromebook. It currently must be programmed on a Windows or Mac. If you want your account PW to be entered with a press of the button. The Titan will not enter your PW. The Titan is NOT programmable. The Titan costs the same as a Yubi Key.
The advantage that Yubi key has is YUBI KEY is PROGRAMABLE. I repeat myself in saying I have been using Yubi keys for over 8 years. The Yubi Key has everything this Chrome Titan key has, except there are TWO Slots in the Yubi key. The First Slot in the Yubi Key is IDENTICAL to the Titan Key, it does not have to be programmed. The second slot is where the Yubi key excels over the Titan. It allows the owner to store a password that may be up to 38 characters long. There is a longer learning curve with the Yubi Key. The Yubi Key is not programmable on a Chromebook. Google elected to sell a DUMBED DOWN version of the Yubi Key.
If anyone from Yubi Key is reading this, why isn't there a little app for Apple/Android store to program a Yubi Key, so a Mac/Windows machine would not be required? With Google coming out with this product, you are going to have some competition, even if your product is superior. If you purchase a Yubi Key, it may be used precisely as a Titan key, and no programming is required. However the Titan key will not enter your account PW, as a Yubi Key will, and the PW may be up to 38 characters. It is a given that many accounts do not require the security of a 38 character PW. Then again, many do.
I think that Google producing their own product with their branding will help with adoption. Currently there is not a lot of support for keys but hopefully this will help change that.
Having passwords stored on the key is not a good idea. You've basically created a single point of failure.
I’ve gotten hacked before and I think I may buy one of these
What’s the point if google is selling your email data anyway
0:22 - When you know you're watching a video for newbz... atleast its short.
What use do I have from it, given that Google granted behind my back access to my gmail account to advertisers?
I don’t see how this stops phishing attack’s? As I see it, it only stops entry to sites. Email phishing is still possible?
This is only a different 2 factor authentic method, bettering mobile application
This is YUBI key only with mobile BT key fob