For the time being, Google is only encouraging users to activate dual authentication, but it wants to impose its use in the future.
Google took advantage of the World Password Day, which took place yesterday, to reaffirm its position in matter of cybersecurity policy. The tech giant has announced that two-factor authentication will soon be enabled for all its users.
Double authentication, also known as "two-step validation", is a simple method of requiring additional confirmation of the identity of the person attempting to log in. Users will be asked to provide a validation code received by SMS, call, email or via a dedicated mobile application, in addition to their traditional login and password. This security may seem trivial and unnecessary, but in fact it greatly enhances account security.
Mark Risher, director of product management, identity and user security chez Google explains that "Complicated passwords encourage users to use them for more than one account. For example, 66% of Americans admit to using the same password on multiple sites, making all of these accounts vulnerable.". For this reason, the company wishes to impose the activation of double authentication to all its users.
In an email quoted by MotherboardMark Risher says that Google "Start with the users for whom the change will be least disruptive" and that they "are planning to accelerate the deployment based on these first results".. A small sample of users can therefore already test the functionality, which should "To be extended in the coming months". However, the date of deployment remains unknown.
Passwords are omnipresent in our daily lives, and it is sometimes difficult to keep different passwords secure for each network. This is why password manager tools exist.
Google also has a password manager directly integrated into Chrome, Android and iOS. The tool tells you if one or more of your passwords have been compromised. Since March 2021, an import feature allows users to download their passwords (up to 1000) from various sites and keep them in a secure interface.