You are seeing a rise in phishing attacks targeting your enterprise user accounts. You need to implement a Google 2-Step Verification (2SV) method that uses a cryptographic signature to authenticate a user and validate the URL of the login page. Which 2SV option should you use?