Have you wondered why an otp is required to make a transaction or additional pin code to access your social media
Well if you must know they are called Multi-factor authentication, simply put an “Extra security check”.
Multi-Factor Authentication (MFA) is an authentication mode or a security system used to check and verify user’s identity by making use of different credentials. It makes use of components of Identity and Access Management rather than just asking for a username and a password. It requires an authentication mechanism like knowledge, possession and inherance (something the user and only the user should know, have and is).
Two-factor authentication (2FA) is a type of Multi-factor authentication. 2FA is an extra layer of security used to make sure that people trying to gain access to an online account are who they say they are. First, a user will enter their username and a password. Then, instead of immediately gaining access, they will be required to provide another piece of information. One good example of the two-factor authentication is the one-time password (OTP) or a code generated or received by an authenticator (e.g Security Token or Smart Phone) that only the user possesses.Two-step verification yet another MFA which involves two methods of authentication used one after the other to verify that the user requesting access is who and what they declared to be.The difference between the Two-step verification and Two-factor authentication is that, although they both usually involve two sequential methods for verification, the methods in two-step verification can belong to the same category of authentication factors while 2FA isn’t basically sequential.Moreover, verification and authentication are not synonymous. Verification would also be part of the real world process like providing a driver’s license as proof of your identity. Whereas Authentication can be considered as a modification of verification processes made to protect automated and online systems.
Key Factors in authentication –
Something to have: physical objects you have in your possession e.g Bank Card, Key
Something you know : a secret knowledge you have like a password, a PIN, etc.
Something you are – physical characteristics of the user (biometrics), e.g. fingerprint, eye iris, voice, typing speed, etc.
Somewhere you are – some connection to a specific computing network or utilizing a GPS signal to identify the location.