Android phone as security key for Google Sign-in

In this article, we cover how to use an Android Phone as security key. With the help of security key we can safely sign-in on devices like Windows, Chrome OS, macOS etc. So, it would act as a deterrent even if our password gets compromised.

How it works?

The current 2-Step Verification process usually requires the SMS service, however newer method provides a way to sign-in with Android phone as security key.

To use the feature, your Android Phone must be running version 7 or higher, and PC/Laptops with Operating Systems – Windows 10, macOS, or Chrome OS with latest version of Google Chome.

This feature uses Bluetooth as underlying technology using FIDO’s CTAP2 protocol. In platforms except iOS, Google Chrome can communicate with android phone over Bluetooth and verify, but with iOS, Google’s Smart Lock app is used to confirm sign-in, which in turn also communicates over Bluetooth.

Why Smart Lock app in iOS ?

Google Chrome in iOS is based on Apple’s WebKit rendering engine, as Apple in it’s app store guidelines states to only use Webkit framework and Webkit Javascript, Google Chrome can not use its own Blink framework in iOS.

FIDO and Bluetooth connectivity are both implemented in Google Chrome. One can easily view Bluetooth connected devices by opening –

chrome://bluetooth-internals/

in Chrome browser, where current state of adapter as well as devices can be seen.

FIDO source code can be found in Google Chrome’s open-source project Chromium, the present implementation use USB and Bluetooth Low Energy (BLE) both.

Enable Security key feature

If you want to enable the feature then, head to – https://myaccount.google.com/security

Herein, enable 2-step Verification and under Show more options, use Security Key. And, follow on-Screen instructions. While signing in to device, turn on Bluetooth on both devices. When you Sign-in it would prompt in Android Phone. You would have to double tap the notification to complete Sign-in process.