Back to course

Multi-Factor Authentication (MFA) Deep Dive

Cyber Security Mastery: From Zero to Hero

Adding Layers of Security

Multi-Factor Authentication (MFA) requires a user to provide two or more verification factors to gain access, making it significantly harder for attackers even if they steal your password.

The Three Factors of Authentication

  1. Something you Know: (Password, PIN, Security Question)
  2. Something you Have: (Physical token, smartphone app, smart card, YubiKey)
  3. Something you Are: (Biometrics: Fingerprint, Face ID, Retina Scan)

Types of MFA Implementation

  • TOTP (Time-based One-Time Password): The most common method, used by apps like Google Authenticator or Authy. A new code is generated every 30-60 seconds.
  • Push Notification: Sends a prompt to your device (e.g., approve or deny login attempt).
  • Hardware Tokens: Physical devices that generate codes or use cryptographic keys (FIDO2/U2F standards are the strongest).

Best Practice: Always enable MFA, especially on email, financial, and administrative accounts.