Not sure if this is an option in these types of situations... but these users can also use the Authenticator Application, which does not send SMS alerts for access, but rely on the App to provide the code.
Thanks for the reply. The issue is that if a third person in my government wants to have complete control over my Gmail account, she/he can do it right now in the following steps:
1) inserting firstname.lastname@example.org into her/his internet browser and request for password reset via mobile phone,
2) searching in all SMS which has been sent and finding the code,
3) inserting the code in the Google website and renewing the password of my account.
She/He can do it irrespective to Google Authenticator on my phone or not. How this app can prevent the above three steps? Google Authenticator in its current version is just an app to help me not putting myself in more trouble when I have enabled the two-step verification sign in. It provides me a key without using SMS. It does not prevent the step-by-step process above for a hacker in a corrupted government. For sure, Google Authenticator can add features to remove this bug. But in its current version it does not.
In brief, Google and facebook etc. has assumed that all government around the world are trustworthy.
1 of 1 people found this helpful
Can you remove getting a SMS as an authentication service and rely only on the app and/or the code-less “Prompt” authentication? I believe this was an option.