Last updated on March 26, 2024
Google plans to auto-enroll 150 million users in 2-Step Verification (2SV) by late 2021. In addition to that, 2 million YouTube creators will have to use 2SV.
Enforcing Two-Factor Authentication (2FA) is a decisive yet commendable way of ensuring the security of users’ accounts. Lately, more and more individuals and companies have decided that 2FA should be mandatory. In May, President Biden mandated federal agencies to adopt multi-factor authentication. Furthermore, MFA is now one of the requirements to get cyber insurance. Finally, Google wants to enforce 2FA on their users’ accounts by the end of the year.
In short, the world is slowly beginning to realize that Two-Factor Authentication is not just a fancy addition for the chosen few, but an elementary security measure that everybody should use. But what exactly are Google’s plans concerning 2FA?
2SV Will Be Enabled on 250 Million Google Accounts
Google’s AbdelKarim Mardini and Guemmy Kim explained that Google aims to protect users with products that are secure by default. Since passwords are not safe, user accounts must be protected with an extra layer of security. Google’s Two-Step Verification ensures an extra layer of security by introducing a second step in the sign-in process. Google prompts, codes sent via text messages, and the Google Authenticator mobile app are just some of the available options.
2-Step Verification has been available for years, but as Google software engineer Grzegorz Milka revealed in a presentation at Usenix’s Enigma 2018 security conference in California, 2SV was enabled on less than 10% of active Google accounts. This leaves more than 90% of active Google users under threat. For this reason, Google has now decided to turn on Two-Factor Authentication by default for millions of its users.
Google did not specify which accounts will have to use 2SV and how it will be decided who is to be auto-enrolled. However, we know which YouTube channels will have to enable 2SV.
2SV Required For Creators in the YouTube Partner Program
Starting on November 1, 2021, all monetized channels on YouTube will be required to turn on 2-Step Verification. Creators that belong to the YouTube Partner Program will not be able to access YouTube Studio or YouTube Studio Content Manager until they enable 2SV on their account.
Creators that do not belong to the YouTube Partner Program will not be required to enable 2SV. So far, YouTube wants to only increase the security of channels that earn money. Nevertheless, if you value your data, you better enable 2-Step Verification on your Google account regardless of your account type.
Enable Google 2-Step Verification
Even if you turn out not to be one of the 150 million users that will be auto-enrolled by the end of 2021, you can still set up 2-Step Verification now and stop worrying about having to enroll later.
If your Google account contains important information, e.g., emails, documents, videos, we recommend you enable 2-Step Verification (2SV) as soon as possible to reduce the possibility of unauthorized access to your account.
Google offers the following authentication methods that work as the second step in authentication:
- Google prompts – tap a Google prompt sent to your phone
- Text message – Google sends a verification code to your phone
- Voice message – Google calls your phone and provides a verification code
- Google Authenticator – open the Google Authenticator mobile app and rewrite the verification code into the sign-in form on your computer
- Security Keys – plug in a security key to the USB port of your computer and then tap or touch the key
- Backup Codes – if you cannot use any of the previous authentication methods, you can use a one-time backup code you received before
To set up 2-Step Verification on your Google account, use this direct link.
2FA Makes You Secure
Google supports its decision to enforce 2FA by pointing out that passwords are not safe. At Rublon, we agree that since passwords are insufficient in modern authentication, companies should enable 2FA on all their applications, VPNs, services, and workstations.
Google’s Two-Step Verification (2SV) has been designed to only protect your logins to Google products. Not all services can be integrated with Google. If you want to be fully protected, you must enable Two-Factor Authentication (2FA) on all your accounts, including your VPN logins, RDP logins, local Windows logins, Linux SSH logins, and more.
Does Your Company Use 2FA?
Don’t wait until it’s too late. Enable Rublon 2FA today and enjoy top user authentication security across your workforce.
Rublon allows you to use several authentication methods, including WebAuthn/U2F Security Key, Mobile Push notifications, Mobile Passcode (TOTP), SMS Passcode, and more.
Rublon will skyrocket your company’s security while providing a user-friendly way to authenticate to applications. To enable Rublon 2FA, start a 30-day Free Trial of Rublon.
