I have a big question about the two-factor authentication. I think the two-factor authentication is a great security measure as far as we use it in the browser. But I think it is not secure when we use it desktop applications.
[The reason] In case of two-factor authentication, these four things are indispensable. (A)Google ID (Gmail address) (B)Its password (C)verification code (D)phone It is great! Even though (A)(B)(C) are stolen, the google account is safe, because (D) is needed to get a new (C)verification code. Meanwhile, when we use Gmail with a third party desktop application, we need these two things. (A)Google ID (Gmail address) (E)application-specific passwords Imagine that (A)and(E) are stolen except (B), Our Google accounts are under controle by someone else. Is this more secure than before? I'd like to know what do you think of. -- You received this message because you are subscribed to the Google Groups "Google Contacts, Shared Contacts and User Profiles APIs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://code.google.com/apis/contacts/community/forum.html
