What is MFA and Why You Should Use It
Calvin Denton
Senior Cloud Security Engineer | Senior Cybersecurity Engineer | Senior MS365 Cloud Engineer | ExpressTek Services
??
Multi-factor authentication is known by the abbreviation MFA. MFA is also known as second factor authentication, or 2FA.
Authentication is a technique for demonstrating that a user is who they claim to be. When you sign into a program or website with your username, which is the account holder, and your password, which verifies that you are the account holder, you have been authenticated.
But if a hacker manages to get your password, they can pose as you. After you enter the right password, MFA adds a second step to authenticate your identity by requesting an additional approval.
?A code from an authenticator app, such as Microsoft Authenticator or Google Authenticator, can serve as the additional approval. Another possibility is that it's a code from a text message you received. In more secure scenarios, a security key such as a Yubico device might be used.
?A security key is a small device that connects to your PC or mobile device via NFC or a USB connection. To complete the authentication process, you must push the button on the key after connecting it to your mobile device or PC.?
?MFA can currently block up to 99% of automated account attacks.
?You should use a password manager in addition to MFA. Using a password manager makes it easier to use unique passwords for each account you have. The best practice is to create unique passwords for each account. If you are using a different password for each account, you won't need to change the passwords for all of your accounts if one of them is compromised.
领英推荐
Additionally, a password manager can make strong password recommendations for you to use on each account. The password manager will assist in managing all of the various passwords.
?Look for a password manager that supports MFA when choosing one to use. Even if someone learns the password manager's master password, they will need the MFA code to access the password vault.
Among the recommended password managers are LastPass and 1Password.?
Learn more about Cybersecurity in my e-book written for end-users at: https://amzn.to/3eRfWEL