The capability is enabled by the recently introduced 2-Step Verification (2SV) method that allows users to protect accounts with a security key built into their Android phones.

Previously, the technology could be used to verify sign-ins to Google and Google Cloud services on Bluetooth-enabled devices running Chrome OS, macOS, and Windows 10, and can now be used to verify sign-ins on Apple iPads and iPhones as well.

Google’s solution relies on FIDO security keys, which provide strong protection against automated bots, bulk phishing, and targeted attacks. The technology relies on public key cryptography to verify the user’s identity and URL of the login page, meaning that the attackers are denied access to the account even if they have the username and password at hand.