Google to Usher in New Standards for Web Security
When more and more of our sensitive information is being stored in a cloud based system, it is important to know that our data will be safe. Thankfully, Google has rolled out a new two-step verification process to their Google Apps users with the intention of introducing this same security for all Gmail users within a few months.
Having your email hacked is a horrible experience. Sensitive pictures, files, passwords, emails, and more can become instantly available to the most dangerous of people. As more people begin to use cloud-based systems for their storage methods, the dangers increases ten-fold and it is up to the service providers (and possibly government legislation) to create new, stronger methods of safe-guarding our private data.
Google is introducing a two-step verification process for signing into their business/education Apps. They explain the process as such:
“When enabled by an administrator, it requires two means of identification to sign in to a Google Apps account, something you know: a password, and something you have: a mobile phone. It doesn’t require any special tokens or devices. After entering your password, a verification code is sent to your mobile phone via SMS, voice calls, or generated on an application you can install on your Android, BlackBerry or iPhone device.”
This does an excellent job at near guaranteeing that the only person accessing your data is you. As an additional benefit, you’re able to select computers that you think are trustworthy (ie. your desktop) so you don’t need to enter dual verification every time.
We imagine (and hope) other companies will begin to catch up with Google’s advances. Paypal has a similar verification process for their members. Of course with the added security comes added inconveniences. What if you lost your phone or had the battery die? When the two-step verification process is enabled for all Gmail users, do you believe this could be something you will utilize? Can you think of other safer or more convenient ways to safeguard your cloud?