Yubico Partners with Google’s Advanced Protection Program

Yubico Team

Yubico Team

2 minute read

Today, Google formally announced their Advanced Protection Program designed to safeguard the personal Google Accounts of those most at risk of targeted online attacks, including journalists, business leaders, and political campaign teams. Yubico has partnered with Google on this initiative as part of our ongoing commitment to working with people at risk including human rights organizations, such as Freedom of the Press, EFF, and The ISC Project, as well as journalists at the NY Times and other news publications.

Modern phishing and man-in-the-middle (MiTM) attacks are creating new threats for users and Google’s Advanced protection Program is an important initiative to protect those most at risk. An extensive Google research study, found that traditional 2-step verification and other authentication methods such as codes sent via SMS, one-time password tokens, and mobile apps are now phishable and susceptible to these attacks.

Google Protection Program with YubiKey user experience
Personal Google Account Advanced Protection Program Login Flow

This is why Yubico and Google co-created the FIDO Universal 2nd Factor (U2F) standard, and why Yubico created the unphishable Security Key, supported by Google since 2014. Both the FIDO U2F standard and the Security Key form the foundation for Google’s new Advanced Protection Program.

Google’s Advanced Protection Program extends the benefits of using YubiKey security keys with important security enhancements.

  • The strongest defense against phishing – Advanced Protection makes it a requirement to use both a password with a physical security key when signing in. Other authentication methods that can be more easily phished by attackers, including codes sent via SMS or the Google Authenticator app, are not permitted and will no longer work.
  • Limit data access to trusted apps – Advanced Protection automatically prevents non Google apps from accessing your most sensitive data, like your emails or documents.
  • Block fraudulent account access – Advanced Protection adds extra steps to verify your identity during the account recovery process to safeguard against fraudulent account access.

In partnership with Google, Yubico is proud and honored to announce our participation and support of those signing up for Google’s Advanced Protection Program. 

You can read more about how to sign up to the program at Google’s Advanced Protection Program information page.

,
Talk to our teamTalk to our team

Share this article:
  • Goodbye master passwords: Dashlane and Yubico enhance credential vault encryption and login with YubiKeysAt Authenticate 2025 this week, the world’s leading experts on modern authentication and securing digital identities gathered, to discuss the future of secure authentication and achieving usable security across the account lifecycle. The message was clear: the future of phishing-resistant authentication is using passkeys for encryption, and the gold standard is device-bound passkeys – YubiKeys. […]Read morecredential vault encryptioncredential vault loginDashlanepartnerpasskey encryptionPRF
  • Piloting Europe’s future ID: Passkeys securing digital walletsOver the last several years, passkeys have become ubiquitous. They are available on every mobile platform, in every leading browser, as part of all major enterprise IAM solutions, and in most major cloud services. Until wwWallet came along, the only place where passkeys hadn’t yet made an impact is in the rapidly developing world of […]Read moredigital identity walletspasskeysSIROSwwWallet
  • We’re excited for what’s to come – meet us in-person to find out whyIt’s been a busy year for our team, filled with exciting company and product updates aimed at better serving our customers and helping them achieve cyber resilience as AI-driven phishing threats continue evolving globally. Between industry award recognitions and key new executive leadership hires to lead Yubico to its next stage of growth and a […]Read more
  • FIPS certified vs. FIPS compliant: What’s the real difference?“Is your MFA solution FIPS compliant, or is it certified?”  This is a question we hear a lot, and for good reason. In industries where security and compliance are critical (especially in government contracts), understanding the difference between FIPS certified and FIPS compliant isn’t just semantics – it can mean the difference between meeting requirements […]Read moreFIPSNIST