2-step verification is the best thing to happen to safeguarding accounts since knowing the password alone is not worth it. Google is now going a step further to enhance the 2-step verification. Google Account now supports Security Key, which is a physical USB second factor that only works after verifying the login site is truly a Google website. Google claims this practice will make sure the cryptographic signature cannot be phished and even gives users an additional layer of security.
Google’s Chrome and the Security Key support Universal 2nd Factor (U2F) protocol from the FIDO Alliance and works any where the protocol is supported.