:quality(75)/cloudfront-us-east-1.images.arcpublishing.com/elcomercio/HFMOZ5M6YRDDFLULMC4J6WV5ZE.jpg)
Google has recently updated the setup process for its two-factor authentication (2FA) system. With this update, users can directly add a “second-step method” to their account, such as an authenticator app or hardware security key, instead of entering a phone number. This update simplifies the configuration process and allows users to choose more secure verification options before activating the two-step verification system.
Google’s 2FA system previously required users to add their phone number to verify account access by receiving an SMS code. With this update, users can now implement more secure methods like passkeys or 2FA without going through the SMS verification step first. This is especially beneficial for those who prefer authentication methods that may be more secure than SMS messages, which can potentially be intercepted.
Users will have the option to choose other verification methods from the get-go. Google recommends using time-based, one-time password applications like Google Authenticator for enhanced security. For those interested in using hardware security keys, Google provides two options to add them to the account within the ‘Access keys and security keys’ page. Users can register a FIDO1 credential or a FIDO2 credential in these keys based on industry standards that assess the security and interoperability of authentication solutions.
Google has assured users that their authentication data won’t be automatically deleted if they choose to disable two-step verification. The update is being rolled out for all Google Workspace customers and users with personal Google accounts gradually.
Overall, this update aims to enhance security and streamline the authentication process for Google users. It offers more options for securing accounts and accessing them securely, reducing the reliance on less secure methods like SMS verification.
With this new update, users can now implement more secure methods like passkeys or 2FA without going through the SMS verification step first. This is especially beneficial for those who prefer authentication methods that may be more secure than SMS messages, which can potentially be intercepted.
Additionally, Google has made it easier for users to configure their 2FA settings by allowing them to directly add a “second-step method” to their account instead of entering a phone number.
For those who prefer hardware security keys over software options, there are now two ways to add them to your account: either register a FIDO1 credential or a FIDO2 credential in your authenticator app.
Google has also assured its users that their authentication data won’t be automatically deleted if they choose not use 2FA anymore.
Overall, this update aims to enhance security and streamline the authentication process for Google users by providing more options for securing accounts and accessing them securely while reducing reliance on less secure methods like SMS verification.