Multi-factor authentication (MFA) is an authentication technique that requires a user to present at least two factors that prove their identity.
- Something you know: A password.
- Something you have: A cellphone or keycard that can verify your identity.
- Something you are: Fingerprints or some other biometric data.
Why Use MFA?
Multi-factor authentication makes stealing your information exponentially more difficult. Cybercriminals have more than 5 billion unique stolen credentials to choose from. These can easily be used to take over bank accounts, health care records, company email, and more. In 2017, Google admitted that hackers steal almost 250,000 web logins each week. That number is certainly higher today. Credential harvesting is a constant threat and 80 percent of hacking-related breaches are caused by stolen or weak passwords.
A security breach caused by a weak user password would understandably have huge consequences for both the company and the customers and vendors who trust it.
User Impact
MFA secures the user’s data without requiring much effort on the part of the employee. Users will only need to authenticate when using a new browser for the first time, replacing a mobile device, or receiving a new computer. If you always use the same phone or computer to log in, you will not need to verify your identity during each login. Single sign-on can also be set up to allow users the ability to use one password for access to their PC, VPN, and 365 cloud-hosted data.