rocketwise | Blog, Tech Tips, Downloads and Resources!

Multi-Factor Authentication (MFA)

Written by Chip Severance | Jan 7, 2022 2:49:40 PM

Multi-Factor Authentication (MFA) is a security approach which uses additional types of required inputs from a user at the time of a login attempt to help confirm identity.  The additional requirements come in the form of a combination of the following:

          • Something you know (password)
          • Something you have (a phone, security token, or smart ID/badge)
          • Something you are (biometric scan--like a fingerprint, retina, or face)
          • In other cases, location or calendar data may be used for conditional access rules
          • Behavioral data such as typing speed can even be used to help validate identity

 

Microsoft reports based on their research that MFA can prevent over 99.9% of account compromise attacks.

(source: https://www.microsoft.com/security/blog/2019/08/20/one-simple-action-you-can-take-to-prevent-99-9-percent-of-account-attacks/)


MFA Examples & Enablement Process:

The popularity of Multi-Factor Authentication (MFA) and the rapid advancements in the field of biometric scanning have given way to the mass availability of the related technologies. These factors have led to MFA security being currently available for use in many forms by every type of user. The most commonly used Multi-Factor Authentication methods are the following:

Push Notification
 A notification is sent directly to a device/app that prompts for approval or allows for a provided code to be entered to complete authentication.

One-Time Password (OTP)/Security Code

          • A code sent via email to a trusted email address
          • A call made to a trusted phone number
          •  A code generated by a software security token or authenticator app
          • A code generated by a hardware security token

Biometric Input

          • Fingerprint, face, retina (eye), voice, hand, or iris (eye) scan
          • Microsoft’s Windows Hello, Apple’s Touch ID & Face ID, Android’s fingerprint and retinal scanners are popular biometric scanning solutions among end-user devices.


While the process to enable MFA various across the many available types of devices, accounts, and operating systems will vary, the process to enable MFA-based security typically involves an initial setup.  The setup process for MFA typically identifies which other methods of authentication should be trusted and then performs a confirmation test before updating their records with any new trusted authentication method.

For more information on how to enable MFA on each specific device or service you have, consult the manufacturer's support site.  In many cases, however, you can simply search for “MFA,” “Multi-Factor Authentication,” “2FA,” or “2 Factor Authentication” in the settings or alternatively look for a settings category such as “security,” “account,” “login,” or possibly “advanced” and browse to the option to activate MFA security.

Some examples of how to setup MFA in common applications are listed below:

Microsoft Account:

How to setup two-step verification with your Microsoft Account

Turning two-step verification on or off for your Microsoft account

Secure access to resources with multifactor authentication

Apple Account:

Two-factor authentication for Apple ID

Manage two-factor authentication from iPhone

Google Account:

Google 2-Step Verification

Amazon Account:

Amazon - About Multi-Factor Authentication

Amazon - What is Two-Step Verification?

Yahoo Account:

Yahoo - Add two-step verification for extra security

Yahoo - 2-Step Verification with a Security Key

Zoom Account:

Zoom - Setting up and using two-factor authentication (2FA)

Zoom - Secure Your Zoom Account with Two-Factor Authentication
           

LinkedIn Account:

Turn Two-Step Verification On and Off


Venmo Account:

Venmo – Login Security

Venmo 2-Factor Authentication Set up – Protect & Secure Account

CashApp Account:

Keep your account safe on Cash App

Cash App Security

PayPal Account:

PayPal - Email, encryption, and other protections

PayPal - How do I turn on or off 2-step verification for PayPal account login?

Facebook Account:

What is two-factor authentication and how does it work on Facebook

Facebook - Login Alerts and Two-Factor Authentication

Twitter Account:

Twitter - How to use two-factor authentication

Instagram Account:

What's two-factor authentication? - Instagram Help Center

Two-factor authentication - Instagram Help Center

HTG - How to Turn on Two-Factor Authentication on Instagram

BI - How to set up two-factor authentication on Instagram to help protect your account

 

For a deeper dive on MFA concepts, refer to the following sites that have created guides on the topic and updates on the state of MFA:

https://brainstation.io/cybersecurity/two-factor-auth

https://www.nist.gov/itl/applied-cybersecurity/tig/back-basics-multi-factor-authentication

https://www.cisa.gov/publication/multi-factor-authentication-mfa

https://en.wikipedia.org/wiki/Multi-factor_authentication

https://www.pcmag.com/how-to/two-factor-authentication-who-has-it-and-how-to-set-it-up

https://venturebeat.com/2017/09/24/a-guide-to-common-types-of-two-factor-authentication/

 

If you have any questions or would like more information about the services we offer, please click to schedule a call.