Multi-Factor Authentication

Multi-factor Authentication (MFA) is a type of user verification that requires the user to enter two or more identity elements to log in to an online account. For example, many websites can be accessed via a single password, but MFA would also require users to enter a code texted to their phone or answer a security question.

In most case, multi-factor authentication includes using one factor from two of three categories:

• Type 1: Knowledge, such as a password or personal identification number;
• Type 2: Possession, such as a token or one-time use code;
• Type 3: Inherence, such as a fingerprint or retinal scan.

One type of MFA is two-factor authentication, where only the two verification factors are necessary. Multi-factor authentication, however, requires users to present at least two, but may demand more.

While MFA offers enhanced data security, there are some potential drawbacks. The system is not foolproof, for example, and some users may consider the process bothersome and unnecessary. A multi-factor verification system can also be costlier to implement and maintain.