What is Multi-Factor Authentication (MFA)?

What is MFA?

Multi-factor authentication (MFA) is a security process in which a user is required to provide two or more authentication factors in order to access a system or service.
View Options Again

Is the following statement True or False:
MFA makes it more difficult for cyber criminals to gain access to systems

MFA enforces multiple forms of authentication. Because of this, cyber criminals can't login to services you use, even if they guess or obtain your password through other means. They need to capture the secondary form of authentication which is typically something you have or something you are.
View Options Again

Types of MFA

Which of the following is NOT a type of MFA

Somewhere you are is commonly referred to as a contextual access control but not an MFA type. This is because it's something that can typically be spoofed by an attacker. For example, if a geo-restriction is placed on a service so only people from Australia can login, an attacker can simply use a VPN to bypass this.
View Options Again

Diving into the types of MFA

MFA best practices: Something you know

MFA best practices: Something you have

MFA best practices: Something you are

What is the most secure way of proving something you are

While voice and facial recognition are useful methods of proving who you are, they are not the most secure as they are prone to inaccuracies which may lead to an attacker spoofing your voice or face. A fingerprint is generally considered to be the most accurate and secure method. A password is something you know, not something you are.
View Options Again

What is the WEAKEST way of proving something you have

SMS-based One-Time-Passwords (OTPs) are generally considered the weakest way of proving something you have. This is because SMS OTPs can be intercepted through a popularised attack called SIM-swapping. The more secure methods for this type of authentication are to use software or physical OTPs
View Options Again

Wrapping up