Google has been running a two-year internal trial of “Security Keys”, which are cheap, easy-to-use USB-pluggable devices for generating secure authentication tokens, based on the “Universal Second Factor” open standard. Verdict: they work really well, and are resistant to phishing attacks. The Chrome browser has already added support for them. <http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/>