DIGITALSECURITYGUIDE

2. Set up 2-step verification
Google's version of two-factor authentication, referred to as 2-step verification (2SV), can also be accessed from
the Security tab on the Account Settings page.
You'll find it just underneath the "Change password" option.

To set it up, you will need to provide a phone number, which will be verified with an initial code sent via SMS or
as an automated voice message. Click "Setup" in this section, then follow the instructions.
Note that in some regions this option is not available - possible workarounds include using one of the many
services which provide free internet SMS to get the initial setup done, then switching to the Authenticator app.

Google's app supports most phone platforms, and is useful for securing a raft of other services too. You can
switch to this once the initial setup is complete, or you can stick to SMS or voice to send codes.
Once you have logged in on a given machine for the first time, Google will offer to "trust" that machine, meaning
no more codes will be required - the box is checked by default, so if you log in from an untrusted system, make
sure you uncheck it.
For mail client apps and other services that don't support secondary codes, you can generate a device-specific
password which replaces your standard password when logging in - see the second tab in the 2SV options
page.
You can also provide a backup phone number, or generate a list of one-off emergency codes, to use in case of a
problem with your main method of generating codes - as usual, make sure these are secure.
Google has also recently introduced its Security Key which can be plugged into your USB port and used instead
of SMS or an authenticator app as your second factor of 2SV. Google's part of it is free, but you do have to pay
for a compatible device. You're also restricted to Chrome when using it.

16

Select target paragraph3