Multi-Factor Authentication

Multi-Factor Authentication (MFA) is a method of computer access control that adds an extra layer of protection on top of your user name and password. With MFA a user is granted access only after successfully presenting several separate pieces of evidence to an authentication mechanism – typically at least two of the following categories: knowledge (something you know such as a password or personal identification number (PIN)), possession (something you have such as a cryptographic identification device, smart card or secure token), and inherence (something you are: Biometrics such as fingerprints, iris, face, palmprint, etc.). The goal of MFA is to create a layered defense and make it more difficult for an unauthorized person to access a target such as a physical location, computing device, network or database. If one factor is compromised or broken, the attacker still has at least one more barrier to breach before successfully breaking into the target.

A good example from everyday life is the withdrawing of money from a ATM; only the correct combination of a bank card (something that the user possesses) and a PIN (personal identification number, something that the user knows) allows the transaction to be carried out.

The use of multiple authentication factors to prove one’s identity is based on the premise that an unauthorized actor is unlikely to be able to supply the factors required for access. If, in an authentication attempt, at least one of the components is missing or supplied incorrectly, the user’s identity is not established with sufficient certainty and access to the asset (e.g., a building, or data) being protected by multi-factor authentication then remains blocked. The authentication factors of a multi-factor authentication scheme may include:

Something the user has: Any physical object in the possession of the user, such as a security token (USB stick), a bank card, smart card, a key, etc.
Something the user knows: Certain knowledge only known to the user, such as a password, PIN, TAN (transaction authentication number), etc.
Something the user is: Some physical characteristic of the user (biometrics), such as a fingerprint, eye iris, voice, typing speed, face, electronic signature, pattern in key press intervals, etc.
Somewhere the user is: Some connection to a specific computing network or using a GPS signal to identify the location.

Related Products

FEITIAN achieved the FIDO Biometric Component Certification

Nick Schooler2023-09-06T09:18:29-07:00April 29th, 2021|

Beijing, China and Santa Clara, CA — April 29, 2021 — FEITIAN has been qualified to be the first security key and smart card vendor to achieve the FIDO Biometric Component Certification. This is mandatory to qualify for FIDO

EyeLock Secures Contract in Egypt with its Portable Template Technology

Nick Schooler2023-03-13T14:07:50-07:00April 21st, 2021|

NEW YORK, April 21, 2021 -- EyeLock LLC, a leader of iris identity authentication solutions and subsidiary of VOXX International Corporation (NASDAQ: VOXX), announced today that it was awarded a contract to control the access of individuals into the four data center

EyeLock Releases EyeLock ID® – Simplified Logical Access for On-Premise and Remotely Connected Workers

Nick Schooler2023-03-13T14:08:04-07:00September 22nd, 2020|

NEW YORK, Sept. 22, 2020 -- EyeLock LLC, the leader of iris-based identity authentication solutions, announced today the release of its highly anticipated EyeLock ID® logical access system for connected workers. Recognizing that passwords and usernames are things of the

Ping Identity Builds and Matures Zero Trust Security Infrastructures

Nick Schooler2023-03-13T14:08:31-07:00December 17th, 2019|

December 17, 2019 09:00 AM -- DENVER--Ping Identity (NYSE: PING), a pioneer in Intelligent Identity solutions, today announced its continued support for enterprises in developing a Zero Trust security infrastructure with new capabilities, practical guidance, and technology integrations. As organizations

RSA® and Yubico Partner to Address Growing Digital Risks of the Modern Workforce with Enterprise-Grade FIDO Authentication Solution

Nick Schooler2023-03-13T14:08:32-07:00December 10th, 2019|

December 10, 2019 09:00 AM -- BEDFORD, Mass. -- RSA (@RSAsecurity), a global cybersecurity leader delivering Business-Driven Security™ solutions to help organizations manage digital risk, will extend its enterprise offering of modern authentication and identity assurance

Yubico Launches Enhanced Authenticator App Suite for Secure Authentication on iOS, Android and Desktop

Nick Schooler2023-03-13T14:08:33-07:00December 9th, 2019|

December 09, 2019 09:00 AM -- PALO ALTO, Calif. & STOCKHOLM -- Yubico, the leading provider of hardware authentication security keys, today launched the latest version (v1.1) of its Yubico Authenticator mobile application for iOS. The app now extends support for

Alarming Industry Trends Reported in DFARS Cybersecurity Compliance
AT&T, Sprint, T-Mobile and Verizon unveil next-generation mobile authentication platform details
Aware Recognized as a Top Ten Multifactor Authentication Solution Provider by Enterprise Security Magazine
BIO-key Secures more than $10M in Orders for its Biometric Security Software
BioID launches face recognition app for Android and releases source code
Biometric Smart Cards
BIOSID™ Biometric Mobile Enrollment and Verification Tablet Device (Ver 1)
- Complete Solution: Tablet, Software and Cards Included
- Mobile Biometric Identity Verification + Mobile Enrollment
- IP65 Rugged Handheld Device with Lightweight Feel
- Waterproof, Dustproof, Shockproof, Drop-Resistant
- WiFi, GSM Cellular Services, and Bluetooth Connectivity
- Multi-Modal Biometrics: Fingerprints, Iris, Faceprint, Signature
- Onboard Smart Card Encryption for Secured Biometrics Storage
- Multi-Factor Authentication with 1:1 Biometric Matching
- Digital Display of Cardholder Information
- Write to Smart Card Directly (contact or contactless) or Send to Remote Location (Cloud database) or to the device
- Verify biometric users information from Smart Card Directly (contact or contactless) or a Cloud database
- Biometric licenses from RankOne (Face), Princeton Identity (Iris) and NEUROtechnology (Face and Iris)
- Features Contact & Contactless M.O.S.T. Card® Smart Cards
- idblox® Compliant for Seamless Connectivity to idblox Products
- Standard and Custom Versions Available
- Tablet may be purchased without software or cards
- FBI Fingerprint certified algorithm with Suprema fingerprint sensor
- Available language in English, Spanish, French and German
BIOSID™ Biometric Mobile Enrollment and Verification Tablet Device (Ver 2M)
- Complete Solution: Tablet, Software and Cards Included
- Mobile Biometric Identity Verification + Mobile Enrollment
- IP65 Rugged Handheld Device with Lightweight Feel
- Waterproof, Dustproof, Shockproof, Drop-Resistant
- WiFi, GSM Cellular Services, and Bluetooth Connectivity
- Multi-Modal Biometrics: Fingerprints, Iris (large order only), Faceprint, Signature
- Onboard Smart Card Encryption for Secured Biometrics Storage
- Multi-Factor Authentication with 1:1 Biometric Matching
- Digital Display of Cardholder Information
- Write to Smart Card Directly (contact or contactless) or Send to Remote Location (Cloud database) or to the device
- Verify biometric users information from Smart Card Directly (contact or contactless) or a Cloud database
- Biometric licenses from RankOne (Face), and NEUROtechnology (Face)
- Features Contact & Contactless M.O.S.T. Card® Smart Cards
- idblox® Compliant for Seamless Connectivity to idblox Products
- Standard and Custom Versions Available
- Tablet may be purchased without software or cards
- FAP20 FBI Fingerprint certified algorithm with Suprema fingerprint sensor
- Available language in English, Spanish, French and German
BIOSID™ Pro Biometric Mobile Enrollment, Validation (AFIS & ABIS), and Verification Tablet Device
- Complete Solution: Tablet, Software and Cards Included
- Mobile Biometric Identity Verification (AFIS & ABIS) + Mobile Enrollment + Mobile Validation
- AFIS (Automatic Fingerprint Identification System) enable with complete version
- ABIS (Automated Biometric Identification System) for both Face and Iris enable with complete version
- IP65 Rugged Handheld Device with Lightweight Feel
- Waterproof, Dustproof, Shockproof, Drop-Resistant
- WiFi, GSM Cellular Services, and Bluetooth Connectivity
- Multi-Modal Biometrics: Fingerprints, Iris, Faceprint, Signature
- Complete United States Biometric validation solution from CardLogix, RankOne Computing (Face), Princeton Identity (Iris)
- Onboard Smart Card Encryption for Secured Biometrics Storage
- Multi-Factor Authentication with 1:1 Biometric Matching
- eMRTD reader with MRZ, Barcode, and QR code reading capability with dedicated reader
- Digital Display of Cardholder Information
- Write to Smart Card Directly (contact or contactless) or Send to Remote Location (Cloud database) or to the device
- Verify biometric users information from Smart Card Directly (contact or contactless) or a Cloud database
- Features Contact & Contactless M.O.S.T. Card® Smart Cards
- idblox® Compliant for Seamless Connectivity to idblox Products
- Standard and Custom Versions Available
- Tablet may be purchased without software or cards
- FBI Fingerprint certified algorithm using the FAP 45 sensor from IB Sherlock
- ISO 19794-5 and ISO 19794-6 Face and Iris Biometric certified with NEUROtechnologies licenses
- Available language in English, Spanish, French and German
BioSig-ID partners with Mitek to enable digital identity proofing for fast and secure gesture biometric enrollment

Categories: Access Control, Logical Access

Tags: 2FA, Cyber Security, MFA, Multi-Factor Authentication, Single Sign-On, SSO, Two-Factor Authentication

« Back to Glossary Index

Related Products

Taglio PIVKey™ C910 Certificate Based PKI Smart Card for Authentication and Identification

SentryCard Biometric Fingerprint Smart Card

GIDS Card (Generic Identity Device Specification) Multi-Factor Authentication Login PKI Smart Card

Princeton Identity Access600™ Iris Scanner & Face Camera

Related Articles