Google Announces USB Security Key

Posted on: Thursday, October 19, 2017

This one is for those of you who are wary about online account security. Yesterday, Google announced a new and unique security feature for their email system.

Protection has increased over the years, ranging from increased password length and complexity, to multi-step verification, to the next big thing: a portable security key that users will need to carry around with them. The key will fit into the USB slot on computers, and login will not be completed without the key.

This has been dubbed the Advanced Protection Program, and Google says it strives to protect users from various threats. This could be as simple as a hacker or criminal stealing your login information, but also will help to avoid concerns such as phishing. Now, when you’ve forgotten your password, lost the key, or been locked out of your account, many extra security measures will be required to surpass to ensure identity. This could include “additional reviews and requests for more details” as per a Google blogpost on Wednesday.

You may be familiar with two-factor authentication, or 2FA, which requires an additional step users must complete after entering their password in order for them to access their account. The idea with the physical key will be the same, but instead of answering a security question such as ‘What was the name of your first pet?’ you will be directed to insert the key.

Who could benefit from this? For the most part, anyone who is interested in an added security feature who does not mind giving up some of the convenience that SMS text confirmation codes and the like can provide. According to one article, jobs that require and extended amount of security due to the large amount of confidential information they possess, such as an election campaign manager or a journalist could be key targets for the key.

To find out more, check out https://www.blog.google/topics/safety-security/googles-strongest-security-those-who-need-it-most/


Facebook Launches Yarn, a New Package Manager for Javascript

Posted on: Tuesday, October 11, 2016

Just today, Facebook launched its new Javascript manager called Yarn, in collaboration with Google, Exponent and Tilde. As the size of Facebook’s codebase continues to grow, they were experiencing issues with their consistency, security and performance. Many engineers have used the npm package manager to find and reuse existing code when working with Javascript or Node.js. After realizing that npm was not working well for Facebook due to performance limitations, Yarn was created with the purpose of being a fast, reliable and secure alternative npm client.

Yarn is a new package manager that has its own workflow for the npm client and other package managers while still being compatible with the npm registry. Yarn allows engineers to be more efficient when using shared code by enabling them to focus on building new products and features. Facebook’s engineers can install packages more quickly and manage dependencies in  secure offline environments. Yarn’s performance was tested on every major JS framework and for additional non-Facebook uses.

Some of the benefits that Yarn provides are:

  • it caches files locally and more efficiently than npm
  • it is able to parallelize some of its operations which speeds up the install process for new modules
  • it removed the npm feature that allowed developers to execute other code that is needed as part of the install process (which is more secure)

Yarn is currently being used at Facebook, and is receiving positive responses. It powers the dependency and package management for many of their Javascript projects. Workflow has been more efficient due to engineers being able to build offline.

Yarn is now available on Github.

 


Share This Site

Our Services



Recent Posts

Categories