The IT Law Wiki
Don't have an account?
Register
Advertisement
Register
in: Definition, Security

Multi-factor authentication

Edit

Definitions[]

Multi-factor authentication (MFA) is

[a]uthentication using two or more factors to achieve authentication. Factors include: (i) something you know (e.g. password/PIN); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric). [1]
authentication through verification of at least two of the following types of authentication factors:
(1) Knowledge factors, such as a password; or
(2) Possession factors, such as a token or text message on a mobile phone; or
(3) Inherence factors, such as a biometric characteristic.[2]

References[]

  1. NIST Special Publication 800-53.
  2. Cybersecurity Requirements for Financial Services Companies, at 2.

See also[]

Community content is available under CC-BY-SA unless otherwise noted.
Advertisement