Google uses FIDO Authentication for both its employees and users.
On the employee side, there has not been a successful phishing attack against Google’s 85,000+ employees since requiring use of FIDO security keys.
On the user side, Google’s goal is to have as many users as possible on phishing-resistant authentication protocols, whether they utilize a security key, an on-device biometric authenticator, or a cryptographic handshake with the users’ mobile device.
Resources
Authenticate 2020 Video: Web Authentication: Enterprise Features & Other Level 2 Additions
Case Study (2019): Defending Against Phishing
Case Study (2016): Google Security Keys Work
