People just dont seem to bother with anything that isnt on by default.
In particular, the default encourages the use of even stronger two-factor methods like rig keys."
What Is 2FA?
Youve almost certainly used it already.
This code is good for one use only, and expires after a short period.
By forcing 2FA onto its users, Google isseriously upgrading their security.
And it wont even be too much of a chore to use.
Googles implementation requires just one additional tap to useno copying and pasting of numerical codes needed.
The Power of Defaults
We rarely bother to change the default configs.
Even so-called power-users leave a lot of parameters alone.
If a photo-editing app exports JPGs, then we use JPGs.
After all, whoever made the app probably knows more about that than us, right?
How about when Wi-Fi routers came open, without a password?
You could enable a password, but who bothered?
“The vast majority of security issues come not from systems, or technology, but behavior.
And of course, most users will refuse.
Another illustration of the power of defaults is Google Search.
If that doesnt show how powerful defaults are, I dont know what does.
