Apple has implied 2 step verification across all of their devices. It allows the network provider to send a code to the device via SMS for verification purposes however recently according to the reports of US National Institute for Standards and Technology, it has been revealed that the medium is not secure for exchange. It is widely expected that the usage of the SMS service for verification will be barred in the future.
There are no proper guidelines directed by US National Institute for Standards and Technology however still most of the companies abide by their suggestions. Apple is likely dropping the SMS verification from their devices permanently. Few of options available for Apple for the 2 step verification is mentioned down under: · A code will be sent to the trusted phone number of the user for the verification purpose (If Apple still continues with their SMS verification) · A call being made to a trusted phone number of the user for verification purposes· An auto generated random code is being sent to the user for verification purpose.
According to the latest draft of the NSIT, it has been mentioned that the number mentioned by the user should be associated with some network for authentication. No user shall be using a VoIP (Voice over internet protocol) or any virtual number for the services. NSIT clearly mentions that VoIP can be easily compromised hence affecting the security of the user’s device. The SMS services for Out of band [verification] will be depreciated clearly. This terminology has clearly created confusion. It physically refers to a separate channel, which sometimes refers to VoIP services. The final decision of the Apple is still pending upon the SMS verification. It is not clearly mentioned if it will be permanently debarred or is still expected to continue.