Thursday, August 10, 2017
2-step verification: there are controversies within
There is controversy over which sub-method for two-step verification is safer. Is sending an SMS message, common with Google and banks, and simpler for many users, less safe that an authentication app which does not require another message over the Internet?
Security Stack Exchange provides a detailed discussion from 2016 here.
Ars Technica also reports on a special app for 2-step verification for Whats App, and the user rules are quite strict.