Multi-factor authentication is a security procedure in which a user provides two different features to identify themselves. One of the features is usually a physical token, such as a security code or an SMS.
People like to talk about something that „you have“ and something that „you know”. A typical example of two-factor authentication is a QR code, while the PIN (personal identification number) forms the associated information. The combination of the two makes it more difficult for a stranger to access the user’s data.
Multi-factor authentication for more secure connections
Multi-factor authentication corresponds to two-factor authentication, whereby different tokens can be used. This allows the user to choose which method suits them best. Modern security processes often consist of a password and biometric data such as a fingerprint or voice recognition.
An attacker may succeed in cracking a single authentication factor, for example. For example, a thorough search of the victim’s environment can lead to the discovery of an employee ID card or a user ID with the corresponding password that has ended up in the rubbish. Or a carelessly discarded hard drive may contain a password database. However, if other factors are required for authentication, the attacker faces at least one more hurdle to overcome.
The majority of today’s attacks are carried out via internet connections. Multi-factor authentication can make these remote attacks far less dangerous because simply cracking the password is no longer enough to gain access. This is because it is very unlikely that the attacker will also gain possession of the physical device or code linked to the user account. Each additional authentication factor therefore makes a system more secure. This is because the individual factors are independent of each other. If one of the factors is compromised, this does not affect the others.
BrokerStar and iOffice by WMC use multi-factor authentication from version 2.4.