Skip to main content

What is Multi-Factor Authentication (MFA) and How Does it Work?

Victor Martinez

What is Multi-Factor Authentication (MFA)?

Multi-factor Authentication (MFA) is an authentication method that requires the user to provide two or more verification factors to gain access to a resource such as an application, online account, or a VPN. MFA is a core component of a strong cyber security policy. Rather than just asking for a username and password, MFA requires one or more additional verification factors, which decreases the likelihood of a successful cyber attack.

 

Why is MFA Important?

The main benefit of MFA is it will enhance our organization's security by requiring our users to identify themselves by more than a username and password. While important, usernames and passwords are vulnerable to brute force attacks and can be stolen by third parties. Enforcing the use of an MFA factor like a security code or physical hardware key means increased confidence that our organization will stay safe from cybercriminals. By enabling MFA, we can better protect our users, keep risks low, and receive the best rates on Cyber Security Insurance.

 

How Does MFA work?

MFA works by requiring additional verification information (factors). One of the most common MFA factors that users encounter are one-time passwords (OTP). OTPs are those 4-8 digit codes that you often receive via email, SMS or some sort of mobile app. With OTPs a new code is generated periodically or each time an authentication request is submitted. The code is generated based upon a seed value that is assigned to the user when they first register and some other factor which could simply be a counter that is incremented or a time value.

 

 Three Main Types of MFA Authentication Methods

Most MFA authentication methodology is based on one of three types of additional information:

  • Things you know (knowledge), such as a password or PIN
  • Things you have (possession), such as a badge, USB key or smartphone
  • Things you are (inherence), such as a biometric like fingerprints or voice recognition

 

Western National Parks Association (WNPA) and MFA

Over the next few weeks, our IT department will roll out MFA that will make it easier to add more security to your user account. This means that we add an extra verification step to make sure that you are who you say you are!

After you register, you will be able to add a safe and secure two-step verification method for your online credentials from a range of authentication options (such as phone call, text message, or mobile app notification) to access your applications.

WNPA will be adding MFA to the following services:

  • Office 365 (Including Email, SharePoint, MS Teams, OneDrive, etc.)
  • LogMeIn/GoTo
  • Zoom
  • Domain/VPN

 

Related articles

Comments

0 comments

Article is closed for comments.