Infosec glossary entry

2FA

2FA:
2-factor Authentication

A security process that requires users to provide two different forms of identification before gaining access to an account, system, or device. This method enhances security by combining two categories of authentication factors: something you know (like a password or PIN) and something you have (such as a smartphone, security token, or smart card). By requiring two independent credentials, 2FA significantly reduces the risk of unauthorized access, even if one factor, such as a password, is compromised.

The most common implementation of 2FA involves entering a password (the knowledge factor) and then verifying identity through a second factor, like a one-time code (OTP) sent via SMS, an authentication app, or a hardware security key (the possession factor). This added layer of security makes it much more difficult for cybercriminals to gain unauthorized access to sensitive information, thereby reducing the effectiveness of phishing attacks, credential stuffing, and password leaks. When more than two factors are required, it is referred to as Multi-Factor Authentication (MFA).

is an extra step added to the log-in process, such as a code sent to your phone or a fingerprint scan, that helps verify your identity [...] https://us.norton.com/internetsecurity-how-to-importance-two-factor-authentication.html

By jean-christoph

March 5, 2022

authentication
Leave a Comment

this might interest you as well

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

Introduction Sun Tzu’s "The Art of War" is a legendary strategic treatise written more than 2,500 years ago. Its enduring principles of warfare strategy have transcended military boundaries, influencing disciplines from business management to competitive sports. In today’s digital age, its relevance is increasingly apparent in the cybersecurity landscape, particularly for CISOs of medium-sized enterprises,

Read More

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

Why We Keep Losing Despite Stronger Security Controls Over the past three years, businesses have almost doubled their confidence in cybersecurity—rising from 32% in 2021 to 54% in 2024 (The Global Cost of Ransomware Study, 2025). Despite this, ransomware’s impact has only grown: 40% of affected companies suffered significant revenue losses, 58% experienced operational downtime,

Read More

AI Cyber Security 2025: Key Threats and Essential Strategies for Your Business

Artificial Intelligence is transforming businesses and industries worldwide, but with this transformation comes unprecedented challenges. The recent launch of Cisco AI Defense, a specialized AI security solution, highlights the urgency of securing AI applications. According to Cisco, only 29% of enterprises feel fully prepared to detect and prevent unauthorized manipulations of AI systems. This low

Read More