Skip to main content

Safety first: Announcing 11 new G Suite security features


With so many people working remotely, it's more important than ever that the tools we use to stay in touch and productive are safe and secure. That’s why today we’re announcing new updates that provide even stronger security in Gmail, Meet, and Chat. We’re also unveiling new ways to help IT admins easily manage and secure devices in the Admin Console. 

Support for the BIMI standard in Gmail

While we have many defenses built into Gmail, we recognize that email functions in a large, complex, interconnected ecosystem. This is why we’re working not just to keep Gmail safe, but to help keep the entire ecosystem secure. 

We do this in many ways: by making our technology available to others, as we’ve done with Safe Browsing and TensorFlow Extended (TFX); by collaborating and sharing best practices in industry working groups; and by helping create and shape many of the standards that secure email today. 

Today, we’re excited to announce the pilot of another standard we’ve been working on: Brand Indicators for Message Identification (BIMI). Our BIMI pilot will enable organizations, who authenticate their emails using DMARC, to validate ownership of their corporate logos and securely transmit them to Google. Once these authenticated emails pass all of our other anti-abuse checks, Gmail will start displaying the logo in existing avatar slots in the Gmail UI.

gmail logo display.png


BIMI provides benefits to the whole email ecosystem. By requiring strong authentication, users and email security systems can have increased confidence in the source of emails, and senders will be able to leverage their brand trust and provide their customers with a more immersive experience.

“For organizations that want to create a trusted brand presence over email, BIMI is a great opportunity, incentivizing them to implement strong authentication, which in turn will lead to a safer, more trusted email ecosystem for everyone,” said Seth Blank, Chair of the AuthIndicators Working Group, and Vice President, Standards and Technologies, Valimail

We’ll be starting the BIMI pilot in the coming weeks with a limited number of senders, and with two Certification Authorities to validate logo ownership: Entrust Datacard and DigiCert. To prepare for the post-pilot launch of BIMI and to generally help secure the ecosystem, we encourage organizations to start adopting DMARC. We look forward to a successful pilot, and to making BIMI generally available in the coming months, at which point organizations can choose if they want to adopt this standard. To learn more about BIMI, visit the working group’s website.

New controls for Meet

Like Gmail, Google Meet securely connects people around the world. With people relying on Meet now more than ever, we're working hard on new ways to keep video collaboration secure. In the coming weeks, we’ll be rolling out new security controls to help ensure that only intended participants are let into a video meeting. In the initial rollout, these options will be available for consumer and G Suite for Education accounts.

First, we’re giving meeting hosts increased control over who can “knock” and join their meetings. Enhanced meeting knocking builds on existing controls that require those not included on a meeting’s calendar invite to explicitly knock and ask to be admitted to a meeting. 

  • Once an attendee is ejected, they won't be able to attempt to join the same meeting again by knocking, unless the host re-invites them. 

  • If a knocking request from a user has been denied multiple times, the user will be automatically blocked from sending more requests to join the meeting. 

Second, we’re giving hosts advanced safety locks so they can better protect meetings with a few simple clicks.

  • With the safety locks, hosts can decide which methods of joining (via calendar invite or phone, for example) require users to obtain explicit approval to join. 

  • Engaging safety locks will block all anonymous users’ (users not logged into a Google account) attempts to join a meeting, and enforce the requirement that the host joins first, for example.

  • Specific safety locks enable the host to control the level of participant interactivity in the meeting. The chat lock and present lock will let hosts control which attendees can chat and present within the meeting.

Meet Safety Locks.jpg

These features add to the protections we’ve already put in place to prevent brute-force attacks, so even if an attacker guesses the meeting code, they wouldn’t be able to enter the meeting without the host’s permission. If the host mistakenly admits the attacker, the chat and present locks would help prevent the meetings from getting disrupted. Finally, if any abuse were to occur, users can report it directly within the meeting.  

New security features in Chat

Chat helps teams stay efficient, productive, and collaborative, whether they’re working from home, the office, or anywhere else. We’re rolling out new security features to make your Chat conversations even safer: 

  • We are extending the strong phishing protections we have built within Gmail to Chat. If a link is sent to you via Chat, it will be checked against real-time data from Safe Browsing and flagged if it’s found to be malicious.

  • In the coming weeks, you’ll be able to report and block Chat Rooms if you suspect malicious activity in one.

                           chat security features.jpg

  • By taking advantage of security signals in Chat, as well as the rest of G Suite, we automatically detect and limit abusive content. For instance, spammy invitations can be classified as spam and in some cases automatically blocked.

Easier management and additional security controls for admins 

The way we work looks very different now than it did six months ago, and IT admins are at the center of keeping their workforces online, productive, and secure. We’re introducing several new features to help admins keep their organizations secure. First, we’re simplifying and enhancing device management. 

  • We've redesigned the devices page in the G Suite admin console to include more intuitive navigation for device management and to quickly display the number of devices managed by each service.

security control settings.jpg

  • We’re also launching our integration with Apple Business Manager (formerly DEP) to provide G Suite Enterprise, G Suite Enterprise Essentials, Cloud Identity Premium, and G Suite Enterprise for Education admins the ability to simply and securely distribute and manage company-owned Apple iOS devices.

Second, we’ve always prioritized keeping your sensitive data protected and private, and today we’re announcing another enhancement to our Data Loss Prevention feature that helps prevent unauthorized access to data. 

  • Admins can now use automated information rights management (IRM) controls to prevent data exfiltration by blocking end users from downloading, printing, or copying Google Drive docs, sheets, and slides that contain sensitive content. 

  • These controls tie in with the Data Loss Prevention rules that have been set for the organization, and admins can run a full scan of all files within Google Drive and automatically enable these controls for all users. 

  • These features are now available in Beta to G Suite Enterprise, G Suite Enterprise Essentials, and G Suite Enterprise for Education customers.

Data Loss Prevention.jpg

Lastly, we’re making it simpler for admins to control app access. Admins can already decide which third-party apps can access users’ G Suite data with OAuth 2.0. Now, with App access control, they can save time by blocking apps from accessing G Suite services via API without creating an allow list for each app that requires access to G Suite data.

control app access.jpg

Safety and security are a priority for us at Google Cloud, and we hope these updates make it easier for IT admins to protect their organization while saving them time and effort.






Comments

  1. Excellent post. I really enjoy reading and also appreciate your work. This concept is a good way to enhance knowledge. Keep sharing this kind of articles, Safety First Training Ltd. Thank you.

    ReplyDelete
  2. I am pleased that this post provided me with some important information. After reading it, I feel you have exceptional knowledge. Thank you for providing information about online safety courses. Keep up the excellent job.

    ReplyDelete
  3. Excellent post. I really enjoy reading and also appreciate your work. This concept is a good way to enhance knowledge. Keep sharing this kind of articles, security guarding course ealing uk Thank you.

    ReplyDelete
  4. A very delightful article that you have shared here. Your blog is a valuable and engaging article for us, and also I will share it with my companions who need this info, Counter Security Services Ltd Thankful to you for sharing an article like this.

    ReplyDelete
  5. Hey friend, it is very well written article, thank you for the valuable and useful information you provide in this post. Keep up the good work! FYI, >physics wallah neet modules pdf free download,10 Lines on Rose in English, Ghost stories from the Indian Hills by Ruskin Bond Book Review

    ReplyDelete
  6. Hey friend, it is very well written article, thank you for the valuable and useful information you provide in this post. Keep up the good work! FYI, Chase Sapphire Reserve credit card review, physics wallah neet modules pdf free download,10 Lines on Rose in English, Ghost stories from the Indian Hills by Ruskin Bond Book Review

    ReplyDelete

Post a Comment

Popular posts from this blog

Use Vault for Gmail Confidential Messages and Jamboard Files

Google vault will be supporting two new formats in the future, Gmail confidential mode emails & Jamboard files stored in Google Drive. Google Vault gives you a chance to retain, hold, search, and export data to support your organization’s retention and eDiscovery needs. This dispatch includes support for new information types with the goal that you can thoroughly oversee your association's information. What happens when individuals in your association sends confidential messages? Vault can hold, retain, search, and export all confidential mode messages sent by users in your association. Messages are constantly accessible to Vault, notwithstanding when the sender sets a termination date or denies access to private messages. Here’s an example of what admin@ink-42.com will see in Vault when they search for sam@ink-42.com and preview this email sent by lisa@ink-42.com . But It’ll not work vise versa. Admins can hold, retain, search and export message headers and s

Zoom’s Work Transformation Summit on Jan. 19: Fresh Approaches for Moving Forward

These past two years have undoubtedly reshaped work. More specifically, these past two years — shuffling between remote, in-person, and hybrid work scenarios — reshaped what employees expect out of their jobs, how they want to work, and what the office means to them.  Organizations are challenged with making big decisions to meet those expectations, and those decisions will dramatically alter how they hire, manage their facilities, buy technology, and maintain productivity. Simply adjusting policies and retooling previous work models won’t do. It takes a comprehensive reimagining. To help organizations navigate this next phase of work, Zoom is hosting our  Work Transformation Summit  on Jan. 19, a free, half-day virtual event designed to provide you and your organization with meaningful strategies, creative approaches, and innovative solutions for redefining work.  Summit attendees will have the opportunity to hear from peers and industry experts on the importance of embracing technolo

Access well-known educational technology tools straight from Google Classroom.

  We're making it simpler for instructors to use popular EdTech products that are most effective for their class right in Google Classroom with a new seamless integration of single sign-on, assigning, and grading. With the help of this feature, teachers can find, assign, and grade interesting content for their classes, and both teachers and students can access their EdTech tools without needing to navigate to other websites or apps or go through a cumbersome login process that requires remembering numerous usernames and passwords. This offers a more simplified experience when using technology to affect learning, in addition to saving instructors and students time. We partnered with 15+ EdTech companies to build custom add-ons, including Kahoot!, Pear Deck, IXL, and Nearpod.  Admins :  In order for educators to use add-ons, district administrators must provide access to them. For further information on how to install the add-ons functionality and specific add-ons for a domain, OU, o