captura-65

Dropbox already allows us to identify ourselves using a USB key

More and more systems allow two-step identification, although they generally use an SMS message, or the famous Authenticator. The use of USB keys is less common, but when data security is important, it is worth investing in this system.

Now it is Dropbox who reports that they are adding U2F (Universal 2nd Factor) security keys as an additional method to their existing two-step verification system, thus increasing the protection of the information.

After reporting our password, it will be necessary to insert the key into the USB port of our computer, instead of reporting the six digits of the message, thus being independent of the mobile phone (something that many will receive with open arms).

They comment that the use of this technique prevents sites posing as Dropbox from stealing our data (something they can do in the traditional way), since USB only works on the actual Dropbox site.

To use it, we need to have a FIDO Universal 2nd Factor (U2F) key, from fidoalliance.org, a key that can be configured in our Dropbox account in the same way that we use it in Google.

With the key in hand, we will access the security section of the Dropbox account and click on Add Security Key, something that can only be done on dropbox.com using Chrome.

In case of not having the USB at hand, we can always request the traditional message, so without access we will not stay.