Feb 10, 2011 17:28 GMT  ·  By

Google proves again that it is the leader when it comes down to mainstream account security by making 2-step authentication available to all Google Account owners.

Multi-factor authentication that combines a traditional password with additional identification methods, such as one-time use codes, has long been used in the financial sector, particularly for online banking security.

Security experts have warned for years that simply using one password is no longer secure enough, especially in a time when password reuse is an extremely common practice.

According to a report from BitDefender, 67% of users have more than five password-protected online accounts and 73% of them reuse access codes.

Furthermore, 63% use single-case alphabetic characters in their passwords, making them vulnerable to brute force attacks.

Two-factor authentication solves all of thses problems, because even if attackers somewhow obtain the password, they still need an unique access code which they can't easily get.

Google has enabled 2-step verification for Google Apps back in September and now it made good on its promise to expand the feature to all accounts.

Once enabled, the feature will add a second screen to the login process where users will be asked to input the unique code sent to them via SMS, voice call or generated through an application on the handset.

But the hassle of having to receive new codes doesn't have to repeat for each login. The second screen has a checkbox to remember the verification on trusted computers for a period of 30 days.

Furthermore, one-time passwords can be generated for Web applications that interact with the Google Account but don't support the 2-step authentication feature yet.

"It's an extra step, but it's one that significantly improves the security of your Google Account because it requires the powerful combination of both something you know—your username and password—and something that only you should have—your phone," notes Nishit Shah, Product Manager, Google Security.