Google Apps adds two-step verification for secure cloud access

Google introduced a new two-step verification process promising users more secure access to cloud-based Google Apps services. Initially rolling out to the enterprise, with a comparable consumer solution planned to debut in the months ahead, the new protocol requires users to sign in to their existing Google Apps account--once their password is entered, Google transmits a verification code to their mobile device, delivered as a text message or voice call. (Android, iPhone and BlackBerry smartphone users are also given the option to generate their code by downloading a custom application.) "This makes it much more likely that you're the only one accessing your data: even if someone has stolen your password, they'll need more than that to access your account," writes Google Apps director of security Eran Ferguson on the Official Google Enterprise Blog. "You can also indicate when you're using a computer you trust and don't want to be asked for a verification code from that machine in the future."

Google notes that the two-step verification tool is built on an open standard in an effort to allow vendor partners to integrate with the solution in the future. In addition, the digital services giant will open source its mobile authentication app, giving partners the flexibility to customize the solution as they see fit.

For more on the Google Apps two-step verification:
- read this Official Google Enterprise Blog entry

Related articles:
Google adding social networking 'layers' to battle Facebook
Google Maps for mobile tops 100 million users a month
Google: Android searches up 300 percent over first half of 2010