Google is simplifying its two-factor authentication system
Google is rolling out a major update to its two-factor authentication (2FA) system, offering users a simpler and more secure login experience. The update, which is now available to Workspace users and personal accounts, aims to simplify the setup process and improve overall security.
Here's What We Know
Previously, users could enable 2FA but were unable to define a secondary verification method in advance. The new update fixes this by allowing users to select a second method - such as the Google Authenticator app (or a similar app that generates one-time passwords - OTP) - before activating 2FA. This removes the less secure SMS verification option, which was previously the primary secondary method for many users.
The update introduces two options for connecting hardware security keys in the Passwords and Security Keys section: using a security key and creating an access code. Users choosing this method must use the security key's PIN for verification, which adds an extra layer of security.
Another major improvement is the changed behaviour when disabling 2FA. Previously, disabling 2FA automatically removed all secondary factors associated with an account. The updated system offers more control to the user. Now, disabling 2FA will not automatically remove predefined secondary factors. This ensures continued protection even if users temporarily disable 2FA.