If there are people who are likely to need it, the function I would like to tell you.
There are basically three ways to protect your Google account.First, set a more secure password.To enhance more, enable two -step authentication processes.And the ultimate is to use advanced protection functions.This time, I will explain what this "advanced protection function" is.
What kind of function to use?
The first thing I want to clarify is that this feature can be recommended for all users with a Google account....Not.
In the first place, it takes a lot of time to set.Also, when using a terminal that logs in for the first time or a device that only opens occasionally, it becomes difficult to log in to the Google account.But these hassle further strengthen security...More specifically, the more you try to ensure security, the more convenient you are.
So, what kind of people are such a serious MAX security enhancement measures for?According to Google, as follows.
While it is a function that all users who own the Google account can be used for free, the people mentioned above are those who can realize the effects the most.
What kind of mechanism?
First, sign in with your password as usual.Next, authenticate the login trial with a smartphone (two -step authentication process).However, here is a bit special.A security key such as a USB key is required instead of an SMS code or authentication app, and Android smartphones (Android 7).You can also use physical security keys such as 0 or later, iPhone (installation of Google Smart Lock), and Google's unique Titan Security Key.
When you log in to a new device, you need to use two physical security keys, so you will actually be in three steps.It is not necessary every time (one is just a backup), but you need to register two keys in your account.
When the function is enabled, the data that the external app can access through the Google account (especially Gmail, Google Drive, etc.) will be limited.For example, apps that access Google accounts with a temporary password to avoid two -step authentication will be blocked.
The exception is that the backup of iOS email apps and WhatsApp seems to be allowed in advanced protection programs.Regarding Google Nest, Google is currently working to make it possible to compatibility with apps and devices.
It seems better to check the compatibility in advance so that external services that are logging in using the Google account do not suddenly become unusable.
What I want to know is that account recovery is also restricted.If a person who is trying to hack can access the email using the information he knows about you, reset the password as it is and effectively locks out from the account.
If you enable advanced protection functions, you will not be able to access both security keys, and you will need an additional procedure to confirm that you are the person (specifically not disclosed, but with photos.You can guess that you can only present your identification card).
Again, it's important to understand that this is a trade -off between security and convenience.You don't have to start your account recovery process unless you lose your physical security key, but in that case it takes time to restore data.
summary
・ It is necessary to prepare two physical keys before starting the registration process.
・ Be careful to log out from all places you are logging in to Google.
・ To log in again, you need a newly registered security key and password.
・ For most users, a high security password setting and a two -factor authentication are sufficient.
・ There is also an option to add physical security keys to your account without registering for an advanced protection program.・ There is also an option to add physical security keys to your account without registering for an advanced protection program.
Please let me know if there are any advanced protection programs and people around you.If you don't need it, you can opt out at any time.The physical security key is still registered in the account, but it can be deleted (in that case, it will return to the standard two -step authentication process).