Google has released a new update for its Advanced Protection Program (APP), which allows users to enroll using passwords instead of traditional physical security keys. This change aims to simplify the login process, also eliminating the need for two-factor authentication (2FA).
Shuvo Chatterjee, Product Manager of the APP, has confirmed that passkeys are now available as part of the registration process with immediate effect. “Passkeys offer high-risk users the option to rely on the ease and security of using personal devices they already own,” said Chatterjee. This measure could significantly expand the APP’s user base by eliminating the cost of acquiring hardware security keys.
The APP is the most powerful level of protection for Google accounts, offering additional guarantees against common attacks such as phishing and malware. Although it is designed for high-risk users, any user can benefit from this advanced security service.
Passkeys are an easier and more secure way to log in to a service, as they are “resistant to identity theft, so they offer users protection against things like fraudulent emails,” according to Chatterjee. These use authentication methods such as facial scanning, fingerprint or a PIN through devices that users already own, such as their smartphones. Unlike passwords, there is no need to remember or type anything, and they are more secure, as they are not stored on servers.
Registering in the APP using an access key is very simple: you just have to visit the APP’s home page and choose the option to register with an access key. Although this method can replace both passwords and two-step verification, Google still requires a recovery method, which can be a phone number, an email, an address, a separate password, or hardware keys.
