From: thepipeline_xyz
MFA, or multifactor authentication, is a security measure that adds a second method of verification beyond a password to confirm a user’s identity for an account [00:00:00]. This additional step ensures that the person attempting to access an account is truly who they claim to be [00:00:08].
Types of Multifactor Authentication
Several common methods are used for MFA:
Biometric Verification
This method uses unique physical or behavioral characteristics to verify identity [00:00:15].
- Face ID is a very common biometric means of MFA [00:00:17].
Hardware Keys
This involves using a physical device to authenticate identity [00:00:20].
- A “key” can be used to confirm identity [00:00:23].
Authenticator Applications
These applications generate time-sensitive codes that users provide after entering their password [00:00:25].
- Ideally, the authenticated software for generating these codes should be on a secondary device, not the same phone being actively used [00:00:32].
Text Message Codes (SMS)
This is a widely used, yet less secure, method where a code is sent to a user’s phone via text message after they sign in with their password [00:00:46].
- It is considered a very dangerous method [00:00:56].
- The vectors for compromise increase exponentially if someone gains consistent access to your phone or the code through methods like a SIM swap [00:00:59].
- Choosing not to use text codes can prevent significant personal and financial loss [00:01:09].
Dangers of Text Message Codes
Using text message codes for authentication is a very dangerous method due to increased vectors for compromise, such as SIM swaps or direct phone access [00:00:56].