Thursday, March 14, 2013

Unfortunate Behavioral Side Effect of Two-Factor Auth

I turned on two-factor auth for my Google account.  Email is the central nervous system of all my private information, and a compromised email account can be used to attack all my other accounts via password resets. Enabling two-factor auth was not a choice: it was an IQ test.

That said, now that Google is two-factor for me, now I almost never choose my Google account as my OAuth account of choice when I’m presented with an OAuth choice.  The choice I’m talking about is best exemplified on Stack Exchange: 


Where I used to choose Google (because I liked their OAuth management page), I now nearly always choose Facebook because I know I’ll never run into the inconvenience of my two-factor auth process.  It’s the path of least resistance from a user experience perspective.

This is an unanticipated side effect of enabling Google’s two-factor auth for me. I wonder if others have the same experience.


  1. thegongshow posted this