Multi-Factor Authentication (MFA)

Multifactor authentication (MFA) is a cybersecurity technique that requires users to provide two or more forms of identification before accessing sensitive information or resources. MFA is designed to provide an additional layer of security by verifying the identity of a user through multiple methods, making it more difficult for unauthorized users to gain access.

The most common forms of MFA include:

Something the user knows: Typically a password or a security question.
Something the user has: A smart card, a security token, or a mobile device with an authentication app.
Something the user is: Biometric data, such as a fingerprint or facial recognition.

MFA can be implemented in a variety of ways, including through:

Mobile devices: Users can receive a text message or use an authentication app on their mobile device to confirm their identity.
Physical tokens: Users can use a security token that generates a unique code to confirm their identity.
Biometric authentication: Users can confirm their identity through biometric data, such as a fingerprint or facial recognition.

MFA is often used in conjunction with other security controls, such as firewalls, intrusion detection systems, and encryption, to provide a comprehensive security solution.

Multi-Factor Authentication (MFA)

Related Terms

Policy Decision Point (PDP)

Policy Enforcement Point (PEP)

Policy Administration Point (PAP)

Back-channel logout

Front-channel logout

cname (Canonical Name)

Signed Header

Continuous Verification

LDAP (Lightweight Directory Access Protocol)

OWASP (Open Web Application Security Project)