Google Phasing Out SMS for Gmail Authentication in Favor of QR Codes and Passkeys
Google has officially confirmed that it is in the process of removing Short Message Service (SMS) as a method of authentication for Gmail accounts. Instead, users will soon rely solely on QR codes and passkeys for secure login.
This change is part of the broader tech industry trend to move away from traditional passwords toward more secure methods like passkeys, which utilize biometric features for login authentication.
Over recent years, the technology world has seen the rise of alternative authentication methods, such as code-generating apps and approaches that don’t require apps at all.
These methods are generally considered to be more secure than SMS-based authentication, which has shown vulnerabilities.
In an interview with Forbes, Ross Richendrfer, a spokesperson for Gmail, explained that Google’s decision aligns with its goal to phase out not just passwords, but also SMS for verification.
He emphasized, “Just like we want to move past passwords with the use of things like passkeys, we want to move away from sending SMS messages for authentication.”
Richendrfer further stated that switching to QR codes would provide additional security benefits for Gmail users by mitigating issues stemming from widespread SMS abuse.
At present, the SMS verification system used by Gmail is not foolproof and has contributed to users falling victim to phishing scams and receiving spam messages.
Currently, SMS verification serves two main purposes: ensuring that the same user is logging in and preventing fraud by verifying that the person accessing the account is the legitimate owner.
However, fraudsters have discovered ways to exploit SMS-based security, often by tricking users into giving up their verification codes.
This issue arises because users sometimes don’t have access to the device where the SMS code is sent, or they rely on their carrier’s security practices, which can be compromised.
Richendrfer pointed out, “If a fraudster can easily trick a carrier into getting hold of someone’s phone number, any security value of SMS goes away.”
Due to these concerns, Google has decided to fully transition to QR code-based verification for Gmail accounts.
In the coming months, users will see a QR code displayed during the verification process, which they will need to scan with their mobile device’s camera, rather than entering a 6-digit code sent via SMS.
According to Richendrfer, “SMS codes are a source of heightened risk for users. We are pleased to introduce an innovative new approach to shrink the surface area for attackers and keep users safer from malicious activity. Look for more from us on this in the near future.”
By switching exclusively to QR codes for authentication, Gmail users will be less vulnerable to phishing scams since no codes will be sent that could be intercepted by malicious actors.
This shift marks a significant step toward enhancing user security and reducing the risks associated with traditional SMS-based verification.
Join Gen Z official Whatsapp Channel To Stay Updated On time the ongoing situation https://whatsapp.com/channel/0029VaWT5gSGufImU8R0DO30
