You Can Now Use Your Android Phone As a Security Key

Google is upgrading the security of your Google Account today. The company is announcing the ability to use your Android phone as a security key to your Google Account.

That means you will now be able to use your Android phone as an alternative to a physical security key and get added protection for your account.

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday — and get free copies of Paul Thurrott's Windows 11 and Windows 10 Field Guides (normally $9.99) as a special welcome gift!

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

The feature works for those with Google Cloud Accounts as well.

Google says the feature will require you to have an Android phone running Android 7.0 or newer, and a Bluetooth-enabled Chrome OS, macOS, or Windows 10 device. But more importantly, you will need to use the Google Chrome browser for the feature to work.

Tagged with

Share post

Please check our Community Guidelines before commenting

Conversation 13 comments

  • codymesh

    10 April, 2019 - 1:16 pm

    <p>"you will need to use the Google Chrome browser for the feature to work"</p><p><br></p><p>don't all security keys use standards? why would it require a specific browser?</p>

    • dontbe evil

      11 April, 2019 - 3:04 am

      <blockquote><em><a href="#419723">In reply to codymesh:</a></em></blockquote><p>because is google, they're tryin to tie you in their spy walled garden</p>

  • know nothing

    10 April, 2019 - 2:12 pm

    <p>How do you set it up? </p>

  • Daekar

    10 April, 2019 - 5:14 pm

    <p>So… how is this different than what I already have, exactly? I already use my phone as a second factor on my Google Account regardless of what browser I'm using – Firefox on Ubuntu, Edgium on Windows 10, or Safari on iOS.</p>

    • jgraebner

      Premium Member
      12 April, 2019 - 7:58 pm

      <blockquote><em><a href="#419798">In reply to Daekar:</a></em></blockquote><p>I can't figure out what is new here either. Google has offered a single-tap second-factor authentication feature via Android phones for a couple years now. Is this a re-design of some sort?</p>

  • dontbe evil

    11 April, 2019 - 3:03 am

    <p>after MS as usual</p>

  • Daekar

    11 April, 2019 - 4:47 am

    <blockquote><em><a href="#419801">In reply to ShaneR:</a></em></blockquote><p>Actually, I am not. This is built in to Android, I don't have my Google account added to the Microsoft Authenticator app, which is the only one installed on my phone. </p>

  • wright_is

    Premium Member
    11 April, 2019 - 5:46 am

    <p>A shame it, like physical tokens, only work with Chrome, even though Firefox and (in the future, Edge) also have support for the interface.</p>

  • Daekar

    11 April, 2019 - 6:52 am

    <blockquote><em><a href="#419801">In reply to ShaneR:</a></em></blockquote><p>Actually, I never added Google to my Microsoft Authenticator the last time I did a factory reset on my S7 because they have a built-in Android function that does the same thing without having an authenticator at all. It doesn't require entering a number or anything, it just asks if you're trying to login from (some browser) on (some operating system) at (some IP address) near (some city).</p>

  • hallmanac

    Premium Member
    12 April, 2019 - 2:20 pm

    <blockquote><em><a href="#419801">In reply to ShaneR:</a></em></blockquote><p>Agreed. I think it works like LastPass does when it authenticates you. LastPass still uses their own LastPass Authenticator app but instead of a code (when they authenticate you – not a third party), you just click the green check mark that shows up and approve.</p>

  • IanYates82

    Premium Member
    12 April, 2019 - 11:21 pm

    <p>For those wondering why this is new, I have a theory… </p><p>Since it requires Bluetooth, and requires Chrome, I suspect it's that when the website issues the second factor challenge, your Chrome browser can tell the site it has a token device available (your phone, connected via Bluetooth), and automatically use that to complete the challenge. So there's no need to touch your phone – just have it paired with your pc. </p><p>One extra step removed but still quite secure since your phone must still be with you, and also with the browser instance that's trying to log in. </p><p><br></p><p>Shame they didn't make it an extension. That'd mean you could install it in Opera, Edge (chromium) etc </p>

  • Matthias Götzke

    15 April, 2019 - 2:12 am

    <p>Did anybody get this to work ? I could set it up without issues but the prompt never comes. Does the phone have to be connected via bluetooth ? No matter what I did, it only said it sent a notification to the phone but nothing ever came.</p>

    • windowsphonealumni

      15 April, 2019 - 2:37 am

      <blockquote><em>I set up my Motiv ring and it's the same, never asks. <a href="#420635">In reply to matthiasg:</a></em></blockquote><p><br></p>

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

Thurrott © 2024 Thurrott LLC