two-factor authentication

(redirected from 2FA)
Also found in: Acronyms.

two-factor authentication

The use of two independent mechanisms to verify the identity of a user. There are four authentication factors as follows:

1. What you know (password, PIN, personal data).

2. What you have (private cryptographic key, authentication token).

3. What you are (biometric scan).

4. What you do (speak a phrase, hand write a signature).

Any two of the four are used in two-factor authentication (2FA); for example, using a password with a token (1 and 2) or a password and fingerprint scan (1 and 3). A password and security question such as "what is your grandmother's maiden name" may be two factors, but they both fall into the "what you know" category, and both could be acquired illegally from the same website. One factor from two different categories is more secure.

Cellphone Second-Factor Codes
Another common two-factor method is that after users log in with a password, a code is texted to their cellphone ("what you have"). Copying that security code from the phone into the login process provides the second factor. See FIDO, authentication, smart card, password and one-time password.
References in periodicals archive ?
They initially purchased 7500 tokens, phasing out their old token system as they introduced the new 2FA solution from CRYPTOCard.
A recent report on SIMhacking to bypass Instagram's SMS-based 2FA made it clear just how easy it is to get by the ageing authentication mechanism.
2FA is currently offered to Apple users on iOS 9 or Mac OS X El Capitan or later.
They may not understand how tokenless 2FA works, but they will follow the easy instructions, and that's a perfect solution for all types of PC user--regardless of their level of expertise," he added.
The bank had put 2FA on trial for a year, but customers experienced problems with synchronisation and timing-out.
A two-factor authentication (2FA) solution which operates via mobile phones has been unveiled by Meridea, a mobile and online self-service solutions provider for the financial services market.
He said in one tweet, "For years Facebook claimed the adding a phone number for 2FA was only for security.
The Two Factor Authentication (2FA) feature sends a unique code every time the user tries to log into their account.
M2 EQUITYBITES-August 23, 2016-Identity Automation Acquires Cybersecurity Company 2FA
As you may know, there are a lot of discussions going on, on Reddit, for instance, and we're reaching out to folks who claim their devices have been compromised even though they have the 2fa enabled.
two-factor, one-time password (2FA OTP) technology for remote access to
For this reason the introduction of two factor authentication (2FA) is increasingly being driven by legislation and/or the need to be more secure.