What is Multi-Factor Authentication?

Introduction

Protecting your information is one of the most important things to do in this day and age. With bad actors ramping up more and more attacks on people, it’s crucial to make sure you have strong passwords. However, going further than passwords, many websites are starting to use multi-factor authentication, or MFA. While usually optional, it’s a good idea to use it when available.

Multi-factor authentication might seem annoying to use, but it keeps your accounts and information safe. Each extra layer of protection will deny a bad actor or hacker from getting into your account. Even if they somehow obtain or guess your password, that extra security will alert you before they even get inside of the account or database.

What is Multi-Factor Authentication?

Multi-factor authentication, or MFA, is a method of protection for services or online accounts. Passwords are usually the first method of authentication, letting the service know that you are who you say you are. Authenticating yourself is how anyone gets into their accounts. However, bad actors may be able to obtain this method of authentication, either through online databases, guesses, or simply stealing it with social engineering.

With multi-function authentication, there are extra layers of security that are placed on the account. Even if a bad actor manages to get your password, they will have to provide another form of identification to get into you’re account or service. This can range from anywhere to a text message to an email asking you to input a code that you received. Assuming that the bad actor doesn’t have this, they will be unable to get further than your password.

Most multi-factor authentication options will alert you if someone gets your password, uses it, but fails the MFA. This will likely result in a lock on the account, further deterring the bad actor from trying to get deeper into the account. If this happens, it’s a simple matter of getting in touch with the account customer service. However, it would be a good idea to change all your passwords at that point.

Types of Multi-Factor Authentication

Despite there being a single password for most services and accounts, MFA can come in many forms. Websites and services will usually give you the option to choose from, but it should be one of these things:

Text/SMS Token

Although less secure than other forms, text tokens are usually one of the more common multi-factor authentication options. This may be the only option for some websites and services, but bad actors can obtain your phone number similarly to how they may have gotten your password.

Time-Based One Time Password (TOTP)

One of the most secure MFA options is the one-time password. You may have seen a few authenticator apps across the internet, including Google and Yubikey. These apps will provide a time-sensitive code or string of characters to enter into the service for access. Because it resets every 30 to 60 seconds, a bad actor will have a hard time getting it from there.

Email Token

Like the text token, an email token is sent to your email in the form of a code or a link to verify the user’s identity. Also, similarly to the text token, it is also somewhat insecure, considering your email could be compromised as well.

Physical Token

A physical token is something like a hardware security key or some form of number generator. Without the physical security token, a bad actor won’t be able to get into your account. They are one of the most useful, although it can be somewhat annoying to have to get out the key every time you want to log into your account or service.

Conclusion

There are plenty of ways to establish multi-factor authentication to your online or service accounts. It is becoming increasingly important to get some form of MFA on your accounts, considering bad actors are getting better at finding passwords and hacking accounts. Whether by text, email, one-time passwords, or even physical security keys, it’s a good idea to get something for your security.

Multi-factor authentication is usually optional, but some websites are beginning to require them to use the service. It might be annoying and frustrating to use MFA on your accounts, but there is nothing that makes your account more secure than anything else. Be sure to have some sort of MFA on your accounts to keep them safe from hackers.