Dropbox has today announced another measure to try to keep its user’s accounts safe, revealing that they will be adding Universal 2nd Factor (U2F) secutiyy keys as an additional method that users can use for two-step verification, protecting their account even further than your average 2-step code.
With these keys a user will have to insert their USB drive that contains their key after typing in their password, this is instead of using a six-digit code, and means that you don’t have to worry about finding an app or your battery level.
It also provides a stronger defence against attacks who may want to access your account, as with this the attacker will need your physical USB drive in order to log into your account. With verification codes a hacker could use various methods to attain the key, and as the USB key uses cryptographic communication it will only work if you are signing into the legitimate Dropbox website.
To use the service you will need a security key that follows the “FIDO Universal 2nd Factor (U2F)” open standard, but if you do have one you are good to go with securing your Dropbox and other services.
To secure you Dropbox all you have to do is hit the Security tab in the Dropbox account settings > Click “add” next to Secutiy Keys” and follow the security steps. Once you do set this up you will still have the option to use two-step verification through text message or an authenticator app if U2F isn’t supported or if you don’t have your key.
You can find out more at the source link below.
Source: Dropbox Blog