Technology companies are encouraging users to adopt two-factor authentication

Google has spent most of its decade convincing users to add a layer of security verification to their accounts. Now it’s asking well.

The Alphabet Inc. unit said it plans to automatically enroll 150 million Google accounts and 2 million YouTube accounts in the two-step verification program by the end of the year. Users need to do more than just enter their password to log in to their account. You also need to enter the code sent in the app or text message or plug in a physical security “key”. Users can opt out if desired.

“I think this is table stakes now,” said Markrischer, senior director of product management for Google’s Android operating system and former head of the security and identity team, and the rest of the accounts register as soon as possible. Said. It is possible after 2022, but we refused to disclose the number of registered accounts.

Companies such as Google are asking more account holders to use the more commonly used two-factor authentication or two-step verification, a variation of 2FA. Passwords are no longer enough to keep accounts secure, and hacked accounts can bring time, money, and many types of trouble to businesses, they say.

Consumers, on the other hand, do not seem to feel urgent. Google didn’t say how many accounts are currently undergoing two-step validation, but 2018 corporate engineers say this is less than 10%.

Twitter Inc. revealed in July that only 2.3% of active accounts turned on 2FA in the second half of last year. Formerly Facebook Inc. Meta Platforms Inc., known as, refused to disclose the percentage of accounts with 2FA activated, but said Instagram and Facebook platform numbers are similar.

According to digital security experts, hesitation to register with 2FA tends to be due to the user’s mistrust of passwords, frustration or confusion during setup, or simple laziness.

Jancamp, director of security and privacy at Indiana University’s Center for Informatics, Computing and Engineering, says many people are unaware of how lack of security affects others. ..

According to Camp professor, hackers can access one account to access other accounts, share intimate information and photos, and impersonate the account owner to trick friends, family, and colleagues into making money. You can do harm, such as.

Today, tech companies are gradually replacing their “being there when needed” strategy with the obligation to register with 2FA, or a design approach that strongly encourages it.

In 2018, five years after adding the tool as a configuration option, Twitter began pushing pop-up messages prompting some users with primarily confirmed election-related accounts to set up the tool. Twitter said there was evidence that Prompt increased adoption of 2FA, but refused to disclose that amount.

Last year, Inc.’s smart home company Ring announced that it would require all users to have 2FA, following criticism that customers’ home cameras could be easily accessed by others.

And last year, Meta began mandating 2FA for people who run corporate pages and advertising accounts using business manager tools. In addition, 2FA must enroll in a voluntary program originally designed to protect political accounts prior to the 2020 presidential election and is currently open to certain other prominent users. increase. For regular users, the company has deployed a prompt to set up 2FA with Facebook’s security check feature, saying it is investing in making activation easier and faster.

Both companies are also building a variety of validation tools to make the process more user-friendly. This includes multi-factor authentication apps such as Google Authenticator and Authy that ask the user to verify their identity by pressing a button or entering a code from another device, or physical security that looks like a flash drive and connects to your computer. Contains the key.

2FA systems that send verification codes via text messages are the most familiar to consumers, but are most vulnerable to phishing attacks, security executives and scholars say.

Companies have hesitated to mandate 2FA for fear of driving people away.

Setting up 2FA means adding steps to the process of signing up for the service, and filter out that “the fewer steps, the more people will complete the sign-up flow.” Said Tracy Chou, founder and CEO of BlockParty, an app designed for. Unnecessary mentions and messages on social media.

The Block Party requires users to set up a second validation method when they join, but Chou admits that it can lead to fewer people registering in the first place.

Even Google in 2018 said it wouldn’t require a two-step validation of concerns that additional hurdles could alienate users. According to Google executive Riser, the company has changed course for three reasons. , Visibly serious.

“If no one was hacked, close friends and family would have been hacked. They now know the consequences and have a lot of imagination,” he said.

apply Mint newsletter

* Please enter a valid email address

* Thank you for subscribing to the newsletter.

Never miss a story! Stay connected and informed with Mint. Download the app now!

Technology companies are encouraging users to adopt two-factor authentication

Source link Technology companies are encouraging users to adopt two-factor authentication

Related Articles

Back to top button