Google Authenticator now supports the transfer of 2Step Verification secrets Between Devices
It is now possible to make Google Authenticator share the 2-Step Verification (2SV) secrets between different devices. Google today announced major changes in Google Authenticator App on World Passwords Day. The update will make it easier for those working with passwords to manage their Google Authenticator 2SV codes across multiple devices.
For the uninitiated, the 2SV data is a code that is secretly generated when devices have Google Authenticator installed. Earlier, it was not possible to share this secret data. Now, with this update, you can use the Google Authenticator app to share the 2SV secret with any new device. The Google Authenticator fanboys had been expecting this change. Google made the announcement in a blogpost today to commensurate the World Password Day.
“Using 2SV, 2-Factor Authentication (2FA) or Multi-Factor Authentication (MFA) is critical to protecting your accounts from unauthorized access. With these mechanisms, users verify their identity through their password and additional proof of identities, such as a security key or a passcode,” Google said in the Blogpost.
The new update with work with Google Authenticator version 5.10. This update will not only allow users to provide an easy way to use 2SV but also improve the security of the login process. You will no longer need passcodes via SMS messages to log into different devices. Thus, no data is sent to Google’s servers when the user transfers 2SV secrets, as the communication takes place between the two devices only.
“Your 2SV secrets can’t be accessed without having physical access to your phone and the ability to unlock it,” Google said.
Additional information on the new feature is available on this help page.