How to Set Up Google’s Advanced Protection Program

Google’s Advanced Protection Program (APP) is designed to provide the highest level of security for Google accounts, particularly for individuals at high risk of targeted online attacks, such as journalists, activists, or public figures. Here’s a step-by-step guide to set it up:


1. Prepare Your Hardware Security Keys

The Advanced Protection Program requires at least two physical security keys for account authentication. These can be:

  • USB Security Keys: Such as a YubiKey or Titan Security Key (USB-C, USB-A).
  • Bluetooth/NFC Security Keys: For mobile devices (e.g., YubiKey 5 NFC or Titan Bluetooth key).
  • Built-in Device Keys: Some phones or laptops, like Pixel devices and newer iPhones, can serve as security keys.

If you don’t have hardware keys yet:

  • Purchase them from trusted vendors like Google Store or Yubico.
  • Ensure they’re compatible with your devices (USB-C, NFC, etc.).

2. Sign Up for Advanced Protection

  1. Visit the APP enrollment page: Google Advanced Protection Program.
  2. Sign in with your Google Account.
  3. Follow the prompts to start the setup.

3. Register Your Security Keys

During the setup, you’ll be asked to:

  1. Plug in or pair your first security key.
    • For USB: Insert the key into your computer.
    • For NFC/Bluetooth: Hold the key near your phone and follow pairing instructions.
  2. Register a backup key (optional but highly recommended).
    • Repeat the process with a second key.

4. Test Your Security Keys

After registering the keys, Google will test them to ensure they work properly. You’ll also practice using them to log in.


5. Adjust Your Account Settings

After enabling APP:

  1. Update recovery information: Ensure your recovery email and phone number are up-to-date.
  2. Download backup codes: These can be used if you lose access to your security keys.
  3. Check connected devices: Review and remove any suspicious devices from your account.

6. Understand APP Features

The Advanced Protection Program enforces strict security policies:

  • Two-factor authentication with security keys: Password alone won’t grant access.
  • Blocked access for less secure apps: Only apps that support OAuth and high security protocols can access your account.
  • Enhanced malware protection: APP scans risky downloads in Google Chrome.
  • Restricted third-party access: Only trusted apps can access your Gmail or Google Drive data.

7. Regularly Maintain Your Security

  • Keep your keys safe: Store backup keys securely to avoid getting locked out.
  • Review account activity: Regularly check your Google Account’s Security Checkup.
  • Replace lost keys promptly: If you lose all your keys, account recovery can take time and require extra verification.

Would you like help choosing security keys or understanding APP restrictions?

These security keys generate a unique passcode that Google uses to unlock your account, providing an extra layer of security. So even if a hacker manages to steal your password, they won’t be able to break into your account without the security key. It works as a two-factor authentication, but requires the physical keys rather than a text-based code or Authenticator app.

Unfortunately, security keys aren’t free. They usually cost around $20. And to activate Google’s Advanced Protection Program, you’ll need to own two—one of which will serve as a backup.

2. Where Do I Buy Them?

If you don’t already own several security keys, Google has a few suggestions. The company recommends you buy one USB security key with Bluetooth connectivity from Feitian and a standard USB key from Yubico.

Having a USB security key with Bluetooth is important. PCs may be built with USB ports, but smartphones and tablets generally are not. Feitian’s security key can connect to your mobile devices via Bluetooth.

 

 

For Android users, Google partnered with Yubico for a special $50 deal that’ll provide both security keys. One is a standard USB key. The other can connect to a mobile device over Near Field Communication (NFC), a technology Android phones and tablets generally support.

If you want serious Google account security, the company’s new Advanced Protection Program is designed to fend off even the sneakiest of hacks.

Although the program is available to all, Google designed it for “high-risk” users such as political campaign staffers, journalists, and business leaders who often face targeted email phishing schemes.

To sign up, you’ll have to trade in a little convenience and spend some cash. But in return, you’ll get Google’s strongest security protections and some peace of mind. Here’s a step-by-step guide showing you what to expect.

1. Security Keys

Perhaps the biggest change with the Advanced Protection Program is the log-in process. Whenever you sign into a new device you’ll type in your password as usual. But then you’ll connect a USB security key that’s been registered to your account.

Be the first to comment

Leave a Reply

Your email address will not be published.


*