Security keys must follow the “FIDO Universal 2nd Factor (U2)” from the FIDO Alliance, a nonprofit organization, Dropbox wrote. Once enabled, users can go to their account settings and “add” a security key, however, U2F is only supported for dropbox[dot]com when using Google's Chrome web browser.
Users can also opt to use two-step authentication through text messaging or an authenticator app.
The company noted in the post that the keys will bolster security.
“Even if you're using two-step verification with your phone, some sophisticated attackers can still use fake Dropbox websites to lure you into entering your password and verification code,” the post stated. “They can then use this information to access your account.”