Gemini supports security keys using WebAuthn technology on both our desktop and mobile platforms as a stronger form of two factor authentication (2FA). 2FA requires users to use an additional verification method in addition to their password to sign in, make withdrawals, or perform other protected actions. Security keys provide the strongest level of protection when authenticating to your Gemini account by delivering hardware-backed, cryptographic proof of your identity.
About Security Keys
Security keys come in many forms. This includes biometric authenticators such as TouchID or a cross-platform authenticator like a YubiKey USB dongle. If you maintain a large balance or are concerned about phishing and account security, you should consider taking advantage of this feature. While all Gemini accounts require 2FA, users can also restrict sign in to physical keys exclusively.
How do I register Keys?
You’ll first need to register security keys in order to use them as a 2FA method. To do so, logon to your Gemini account and access the “Security” page within your “Account Settings”. There you can tap “Add Security Key” to add one or more keys. You’ll need to add at least two keys in order to disable other forms of 2FA (e.g. SMS, Authy). This prevents losing access to your accounts should you misplace one of your security keys. You should always store your backup key in a safe and secure location.
What keys should I use?
Selecting keys to purchase and use can often be confusing. There are two types of keys: platform and cross-platform. Platform keys are limited to authenticating a user via a specific device. MacOS TouchID and Windows Hello, are popular examples of platform keys. Cross-platform keys can be used with a laptop or mobile device. YubiKeys are a popular example of a cross-platform hardware security key.
Cross-platform hardware security keys are typically inserted into a device via a USB or Lightning connector. Some hardware security keys also support wireless communications via a standard called Near Field Communication (NFC). Keys that support NFC are typically used with mobile devices.
Using Your Key
First, sign into Gemini with your email and password. You’ll be required to interact with your key if it is already registered. For cross-platform keys, this usually requires you to physically push a button on the key. For a USB security key, for example, you may be asked to insert, then tap the gold area of your security key. For NFC keys, you will need to tap the key to a supported device.
Frequently Asked Questions (FAQ)
Why isn’t my device recognizing my key?
If your key is not recognized by the application during registration, confirm that you are using a key type that is supported by your device.
If you have previously registered your key successfully and it is not recognized, remove the key and reinsert it. Wait for the key to flash, then tap the gold area.
Why does my YubiKey trigger a notification on iOS when using NFC?
When using a YubiKey with NFC on some version of iOS, you may see a Safari notification if the YubiKey remains in proximity of an iPhone for too long. This is the result of the background iOS NFC scanner triggering Yubico OTP. You can safely ignore this notification or, if not using it, disable it via the YubiKey Manager.
Why won’t my phone detect my NFC key?
Some cases on phones can prevent NFC from working correctly. Remove third party cases on your phone if you encounter problems using a supported NFC hardware security key with the Gemini app.
I received an error “Something went wrong low level error 0x6f00”. How can I fix this?
Certain phones and keys (e.g. Titan) appear to be more sensitive to placement or movement when adding an NFC key. Continued attempts 5-10 tries, may be required to successfully use hardware keys in such situations.
Supported Keys
iOS
iOS devices support Lightning and NFC type Yubico branded keys on iOS 13.3 and up.
Android
Android devices support NFC, Titan Security Keys (non-Bluetooth), and USB type keys on Android 8.0 and up.
Apple
Apple devices running OSX and up support TouchID, Lightning, & USB security keys in Safari, Chrome and Firefox.
Windows
Windows devices running Windows 10 support USB security keys in Edge, Chrome and Firefox.
A list of common cross-platform hardware keys that Gemini successfully tested with the Gemini mobile app, can be found in the table below.
Security Key |
iOS 13.3 (Lightning) |
iOS 13.3 (NFC) |
Android 10 (USB) |
Android 10 (NFC) |
Android 10 (BLE) |
YubiKey 5C |
☑ |
☑ |
☑ |
||
YubiKey 5Ci |
☑ |
|
☑ |
☑ |
|
Feitian K13T |
☑ |
☑ |
|||
Feitian K9T |
☑ |
☑* |
*Some tests produced an intermittent error “low level error 0x6f00”. See our FAQ for more details.
Over time we hope to expand support for more devices. This document will be updated accordingly.