Thursday, February 24, 2011

The Cloud of Doubt Behind Google


One of Google’s newest technologies has just been introduced. It is called the 2-factor authentication process. During log in, the user is asked to provide his or her cell or landline number. This number is used as a “key” so that the user can proceed. A one-time authentication code is sent using the number. There are, however, doubts as to the real purpose of requiring the number. This has not yet been answered by the company.

A user who tries to log in is presented with an authentication requirement. The authentication “key” is sent through the number that the user would provide. Unless a number is given, there is no other way for the user to proceed further and log in. It is because of this that doubts about Google’s real purpose have surfaced.

Some users would mindlessly give out their phone numbers. They do not realize the value of this private information. Google’s 2-factor authentication that requires phone numbers is not an exception. Phone numbers, whether cellular of landline, are the user’s private “property. Google’s 2-factor verification is not an exemption. Collecting such vital data from users just for authentication is not good enough explanation. The collection of numbers provided by millions of users hold lots of information which could be abused. What about the storage life of these numbers? Would these be deleted right after verification? Would it not be stored for potential use in the future?

The 2-factor authentication process was launched because according to Google, one’s accounts have been observed for “abnormal activity”. The user can no longer go on to the next step once this page is presented. There is no other option but to provide the number asked for, otherwise the account can no longer be accessed. This is not in reality a choice because one cannot avoid the process. Google might just really want to “grab” the user’s number.

The present status of data protection laws cannot oblige any firm to delete consumer’s data in their list. Only incorrect data could be deleted; all others could stay on endlessly in the web. It goes on to say that Google’s purpose of “protecting” its customers is actually vague and suspicious. There must be an assurance that those uploaded numbers are deleted right away after the authentication procedure. Unless privacy is guaranteed, the 2-factor tool would only be seen as Google’s easy way of “capturing” phone numbers for unknown purposes.

Image courtesy of:

Image: Pixomar / FreeDigitalPhotos.net

No comments: