Today .GOV domains got a little security update which will now require administrators to use two-factor authentication. This makes a lot of sense to me and I’m actually a bit surprised that this wasn’t a requirement a long time ago.
Officials at federal agencies such as the departments of Justice, State and Defense can begin adding two-step verification to their accounts on Monday, according to the General Services Administration, the agency that manages dot-gov domains for the U.S. government. In the coming months, state and local officials will be prompted to add the security feature. (Source – Washington Post)
So…I wouldn’t be surprised if this change came because a bunch of government domains were tampered with. Heck, it’s 2018 – critical domain names that our government uses should be protected by more than a simple password, right?
The thing I’m still trying to figure out from the article is if two-factor authentication is now required, or if it wasn’t even an available option in the past? If this is the first time it’s available that’s a little mind boggling.
What do you think? Is this actually a new feature or just a requirement? I want to hear from you, comment and let your voice be heard!