We all know that passwords are a terrible way to secure valuable services. The fact is that we're all lazy, reuse passwords and perhaps rely on easy-to-remember logins that don't protect us, but are less hassle to type in. But it baffles me that less than 10% of Gmail users are using two factor authentication to log in.
If you don't know, Google offers a second layer of protection to use on any Gmail account. As well as your username and password you also use something called two factor authentication (2FA) There are different ways to implement this extra factor, but they are all incredibly user friendly and range from the Google official app asking you if you're currently trying to log in, to an extra six digit code that cycles once per minute.
Two-factor authentication is a must-have on any account you care about. It's simple to set up and simple to use. Google has a free "authenticator" app for iOS and Android which allows you to type in a master code (or scan a QR code) that then shows you a new code every 60 seconds. This works if your phone doesn't have charge, and you can install it on more than one device. You don't even need a smartphone, Google can text you a code for free too - which might also help if you're abroad and can't get data services for some reason.
And you might think "what if I don't have my phone?" Well, you can print out a set of 10 emergency codes that can be tucked into a purse or wallet. These allow you to log in if your phone has run out of power, or you've had it stolen and need to get into your Google account to start revoking access.
The other slight issue, of course, is that some email apps don't support 2FA logins. For these you're able to produce an app specific login through Google. Say you're using a normal email client, like Thunderbird, you can set up a password that works for that app, so there are no compatibility issues with older or software which isn't 2FA aware.
Using a second factor on services you care about is crucial, we all upload staggering amounts of personal information to Google so we should also make sure we're protecting our accounts with as much security as we can. Apple also offers the same experience on iPhone, to help secure your iCloud account. You get the best experience with iPhones, of course, but Apple will text or call you to verify logins too.
The other advantage is that 2FA can give you a way to spot when someone is logged in as you. This isn't true of the "dumb" six digit codes that are generated by a local app, but for the Google and Apple services that send a notification to your phone it's a great way to stay on top of your security and see who's logging in.
If you're not using 2FA on a Google, Microsoft or pretty much any other account then you need to re-think your security. Google's 2FA options are really, really good and there's no downside to using them. They add an enormous amount of extra security and cost very little in extra effort. In fact, I find the 2FA process less annoying than trying to remember my password.
You can turn on Google's 2FA through your account settings at https://myaccount.google.com/
