{"id":443,"date":"2011-02-17T21:52:00","date_gmt":"2011-02-18T03:52:00","guid":{"rendered":"http:\/\/www.nathanhunstad.com\/blog\/2011\/02\/google-two-factor-authentication\/"},"modified":"2011-02-17T14:00:53","modified_gmt":"2011-02-17T20:00:53","slug":"google-two-factor-authentication","status":"publish","type":"post","link":"https:\/\/www.nathanhunstad.com\/blog\/2011\/02\/google-two-factor-authentication\/","title":{"rendered":"Google Two-Factor Authentication"},"content":{"rendered":"

Google has recently enabled<\/a> two-factor authentication<\/a> for Google products like Gmail. What is two-factor authentication? It means that in addition to providing your password, you need to provide a random verification number that Google will send to your phone, either via an app, a text message, or an actual phone call. Thus, to log in, you need two things: a password and your phone. With only one or the other, you can\u2019t get it. This is much stronger than a password alone, which is why some banks have been moving to two-factor authentication for customers. Google\u2019s decision to enable it for email, and for just about everybody<\/a> with an account, is certainly groundbreaking.<\/p>\n

<\/p>\n

Since I use Google, I decided I\u2019d turn it on to take advantage of the increased security. As reports have indicated<\/a>, it takes about 15 minutes to set it up, but it wasn\u2019t difficult at all. Since I have an Android smartphone, I was able to install Google\u2019s app that generates verification numbers by simply scanning the QR Code<\/a> that Google gave me. Once that was installed, I was able to use two-factor authentication to log into my email account. You can configure it to require two-factor authentication every time you log on, or you can remember the login information for 30 days.<\/p>\n

Google\u2019s two-factor authentication is not without its issues<\/a>. Although it works great for any of Google\u2019s products that you access from a browser, like email, Google Docs, Google Reader, and so forth, for stand-alone programs like an IM client, or Gmail on your phone, the extra verification code will not work. For these uses, Google allows you to generate passwords in lieu of your typical password. You need to do this for each service, so if you have a lot, it\u2019s going to be a hassle. Since I don\u2019t use my Google account to log on to other websites, I only had to configure passwords for Pidgin and my phone. If, however, you do use your Google account to log into dozens of other websites, getting that configured is going to be a pain.<\/p>\n

All in all, I\u2019m glad Google has made this available to users. I\u2019d like to see it spread to other logins, especially for my financial info. Neither ING Direct nor U.S. Bank have this feature; my credit cards are also similarly lacking. Now that the widespread prevalence of smartphones makes adding this functionality much cheaper than handing out actual physical tokens<\/a>, there\u2019s no reason not to implement this.<\/p>\n","protected":false},"excerpt":{"rendered":"

Google has recently enabled two-factor authentication for Google products like Gmail. What is two-factor authentication? It means that in addition to providing your password, you need to provide a random verification number that Google will send to your phone, either via an app, a text message, or an actual phone call. Thus, to log in,… Continue reading Google Two-Factor Authentication<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[127],"tags":[152,153],"class_list":["post-443","post","type-post","status-publish","format-standard","hentry","category-security","tag-authentication","tag-google","entry"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/443","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/comments?post=443"}],"version-history":[{"count":1,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/443\/revisions"}],"predecessor-version":[{"id":444,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/posts\/443\/revisions\/444"}],"wp:attachment":[{"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/media?parent=443"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/categories?post=443"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.nathanhunstad.com\/blog\/wp-json\/wp\/v2\/tags?post=443"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}