:quality(75)/cloudfront-us-east-1.images.arcpublishing.com/elcomercio/HFMOZ5M6YRDDFLULMC4J6WV5ZE.jpg)
New Two-Factor Authentication Update Simplifies Security for Google Users
Google has recently updated its two-factor authentication (2FA) system, making it easier for users to add a “second-step method” to their account. This update allows users to implement more secure methods like passkeys or 2FA without going through the SMS verification step first.
Until now, Google’s two-step verification system required users to add their phone number and verify account access by receiving an SMS code. With the latest update, users can now choose other verification methods such as authenticator apps or hardware security keys from the get-go.
According to Google, this update simplifies the configuration process, allowing users to directly use alternative verification options before activating the two-step verification system. This is especially beneficial for those who prefer authentication methods that may be more secure than SMS messages, which can potentially be intercepted.
Users will have the option to choose other verification methods such as authenticator apps or hardware security keys from within the ‘Access keys and security keys’ page. Google recommends using time-based, one-time password applications like Google Authenticator for enhanced security.
For those interested in using hardware security keys, Google provides two options to add them to the account: registering a FIDO1 credential or a FIDO2 credential in these keys, based on industry standards that assess the security and interoperability of authentication solutions.
Google has assured users that their authentication data won’t be automatically deleted if they choose to disable two-step verification. The update is being rolled out for all Google Workspace customers and users with personal Google accounts gradually.
Overall, this update aims to enhance security and streamline the authentication process for Google users. It offers more options for securing accounts and accessing them securely, reducing the reliance on less secure methods like SMS verification.
