Computer security experts recommend that people use two-factor authentication (2FA) on passwordprotected systems to help keep hackers out. Providing two pieces of information to verify a person’sidentity adds extra security to an account. However, it is not clear if the added security and proceduresimpact system usability. This paper aims to answer this question by assessing per ISO 9241-11’s suggestedmeasurements the usability of Google’s optional 2FA methods. We found few differences across fourdifferent 2FA methods when comparing efficiency, effectiveness and satisfaction measures—illustratingthat one method is not necessarily more or less usable then another. Overall, the measures indicated that thesystems’ usability needed to be improved, especially with regard to the initial setup of 2FA. In conclusion,developers need to focus more attention on making 2FA easier and faster to use, especially since it is oftenoptional for password users, yet makes accounts significantly more secure.
展开▼