You are here

Multi-factor Authentication

What is Multi-Factor Authentication (MFA)

MFA is using more than just a password to authenticate to a system. Common methods of MFA include using a password and cell phone application with one-time passcode, a password with a hardware token, or even a password and a text message with a one-time passcode. It’s the combination of something you know and something you have that is traditionally used for MFA. This combination helps to prevent compromised credentials from being used because while a threat actor might be able to convince someone to enter their credentials into a web form, these additional one-time passcodes require interaction with something the end user physically has in their possession to complete a successful authentication.

Many online applications offer MFA, some even require it. A few examples of applications that can be protected include online banking, social media, email accounts, and health care providers. If there is an application or site that you feel should be protected with MFA but you can’t find a way to accomplish it, contact support to see if they have instructions. If they don’t offer it, maybe they’ll consider implementing it because of your inquiry.