- Listen to our monthly AppSec Stats Flash podcast
- LEARN MORE
Two-factor authentication (2FA), is a type of multifactor authentication that requires a second level of authentication to log into an account. Two Factor authentication is an electronic authentication method in which a computer user is granted access to a website or application only after successfully presenting two or more pieces of evidence (or factors) to an authentication mechanism
Using a layered defence makes it more difficult for an unauthorized person to access the account. Single-factor authentication is less secure because the user only needs to use one factor, usually a password, to gain entry to data.
In one form of two-factor authentication, a user must provide personal information from two of the three categories. For example:
1. “Something you know”includes PINs, security questions, and passwords
2. “Something you are” includes biometrics like a fingerprint, retina scan, or voice print
3. “Something you have”includes a one-time passcode sent to your mobile or email
Using two factor authentication makes accessing an account more secure because someone trying to access the account needs more than the username and password alone.