Comment Re:use SMS (Score 2) 113
The point of 2-factor auth is someone (like a criminal) can have one factor in their possession without it being any good. So with the SMS just being a form of "what you have" (it goes to your cell phone, and in theory only yours, and is time-limited to prevent re-use), an outside attacker would still have to gain the "what you know" or "what you are" factor (either your password/passcode or biometrics of some sort).
True, I wouldn't use SMS for highly classified document protection, but for most things SMS is just fine as a second factor.