On Fri, Oct 17, 2014 at 10:46 PM, Kristian Erik Hermansen <[email protected]> wrote: > You can use mobile phone SMS codes. Perfect, thanks.
> However, realize the NSA and other well > positioned entities could easily detect 2FA coded being sent to your phone > and reroute them in real-time or multiplex the codes to their surveillance > apparatus. Law enforcement and spy agencies will just circumvent the crypto. I don't think there's much anyone can do (other that stop using email). If an adversary takes up a privileged network position, then I think they can intercept when I send the otp back to Google. I don't think I loose much. Thanks again. Jeff -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss. For more options, visit https://groups.google.com/d/optout.
