People using Google apps on iOS can now use NFC-based, USB, or Lightning security keys for two-factor authentication when logging into their Google accounts. This is because Google is providing W3C WebAuthn app support for iOS 13.3 and later.

As part of this update, various brands of security keys, including Yubico's YubiKeys and Google's own Titan keys, are now supported via NFC and Lightning ports. According to Google, people can use these keys on their iPhones and iPads to access iOS apps and various web services on Safari.

Christiaan Brand, product manager for Google Cloud, wrote in his blog: "This feature is available for both personal and professional Google accounts, and the security keys on compatible iOS devices simplifies usability and allows for more types of security keys for Google Accounts and advanced protection programs.

In addition to accessing Google accounts on iPhones and iPads with the YubiKey 5ci Lightning plug, users can also use other security keys, the brand explains. He recommended that high-risk users such as journalists, activists, business leaders, and politicians use the security key and enroll in Google's Advanced Protection Program. (Nest users were able to enroll in Advanced Protection just a few days ago.)

Brand added: "If you work for a political committee in the US, request free Titan Security Keys through Defending Digital Campaigns and we'll help you enroll in Advanced Protection. You may be eligible to request free Titan Security Keys through Defending Digital Campaigns to help you enroll in Advanced Protection.

"Also, if you have a personal or work Google account, 1Password, Bitbucket, Bitfinex, Coinbase, Dropbox, Facebook, GitHub, Salesforce, Stripe, Twitter, or other FIDO security keys can be used on any site that supports 2FA. [The security key is perhaps the strongest element available in a two-factor authentication scheme because it is a device that is always carried with you, instead of a text message that can be intercepted or redirected, or an authentication app that can be spoofed or phished.

Security keys are produced by many other companies besides Yubico and Google, which are working together to create a common global standard. The cheapest USB-A security keys sell for around $15, and you can even make your own security keys.

Google requires all employees to have a security key and is proud to say that since implementing this program, there has never been a successful phishing attempt within the company.