📚 Quick Study Guide: Two-Factor Authentication (2FA)
- 💡 What is 2FA? It's an enhanced security measure requiring two distinct forms of identification to verify a user's identity. It adds an extra layer beyond just a password.
- 🔑 Authentication Factors: You typically combine two of these three categories:
- 🧠 Something you know: Like a password, PIN, or secret question.
- 📱 Something you have: Such as a smartphone (for SMS codes, authenticator apps), a hardware security key, or an access card.
- 🖐️ Something you are: Biometric data like a fingerprint, facial recognition, or an iris scan.
- ⚙️ How it Works: After entering your primary credential (e.g., password), the system requests a second verification method from a different factor category.
- 🛡️ Key Benefit: Dramatically boosts security by making it much harder for unauthorized users to access accounts, even if they compromise your password.
- ✅ Common Implementations: Includes SMS-delivered codes, time-based one-time passwords (TOTP) from authenticator apps, physical security keys (e.g., FIDO U2F), and built-in biometrics.
- ↔️ 2FA vs. MFA: 2FA is a specific instance of Multi-Factor Authentication (MFA) that *always* uses exactly two distinct factors. MFA is the broader term for using two or more factors.
❓ Practice Quiz: Test Your 2FA Knowledge
Click to see Answers
1. B (To add an extra layer of security beyond just a password.)
2. C (A password)
3. C (Something you have)
4. B (It doesn't require an internet connection to generate codes after initial setup.)
5. D (The color of your favorite shirt)
6. B (It requires a second, different factor that the attacker likely doesn't have.)
7. C (2FA is a type of MFA that uses exactly two factors.)
