At its Cloud Next 2018 conference last week, Google described how it plans to combat phishing and secure user login for millions of its customers. The search giant announced a new secure login tool for businesses that would give employees the flexibility of accessing their apps securely from any device.
Google’s tool called Context Aware Access allows businesses to define a set of parameters unique to their users in addition to two-factor verification system in order to secure their systems from being accessed by those with malicious intent. These set of defined parameters could be anything from the MAC address of the devices that they are using at their workplace. Google says the Context Aware Access will allow businesses to grant access to GCP APIs, G Suite, resources and third-party SaaS apps based on parameters like user’s identity, location and the context of their request.
“People increasingly want access to their business critical apps on the devices that make the most sense for how they work. However, traditional access management solutions often put security at odds with flexibility by imposing one-size-fits-all, coarse-grained controls that limit users,” Jennifer Lin, Product Management Director, Google Cloud wrote in a blogpost.
Google notes that Context Aware Access will increase security while decreasing complexity for the users by giving them ability to log on to applications from anywhere and any device, without worrying about security. Initially, the Context Aware Access tool will only be available for select customers using the company’s VPC Service Controls. The tool is expected to become available soon for customers using Cloud Identity and Access Management (IAM), Cloud Identity-Aware Proxy (IAP) and Cloud Identity.
Watch: Oppo Find X First Look Video
In addition to making user login safer, the search giant also announced the launch of a new hardware login device called the Titan Security Key. The Titan Security Key can be used to authenticate logins over Bluetooth and USB and Google has added a special firmware to verify its authenticity. The security key will help thwart those using social media engineering for phishing attacks and better prevent users from stolen identity.