Multi Factor Authentication - You need to use this

Written By Chris Smith
Padlocks and chains FLY-D.jpg

Multi Factor Authentication, sometimes called Two Factor Authentication (MFA or 2FA) is about security. The ‘Factor’ in the subject tends to be another device, or thing, that you have, or can use, or provide.

For example it might be a phone, or another email address, or a phone number; but it also might be a camera seeing your face or a fingerprint.

Why does this matter?

As time goes on, its only ever-more important that your information is kept secure. We all know that we shouldnt use the same password twice, but human nature is that sometimes people do (though… please talk to us about password managers!). If an email account is hacked, the hackers will typically re-use the email address and password against other common sites such as amazon or other services (which would of course be in your email). Once a criminal can build a picture of your habits it makes it easier for them to buy products in your name, move money, or commit other crimes in your name.

Isn’t just a good password enough?

No.

Using a computer, its possible to ‘brute-force’ in to an account by simply guessing a1, a2, a3, a4… etc. And because computers can work very quickly, going through 10 million attempts is not hard. Plus, people can watch you type or might just get your password somehow (it doesnt matter).

But with an account with an additional factor applied, even if someone has your password they still cannot get in.

Using a phone.jpg

How does that work?

Let’s say that an email account has been set up with MFA, with an authenticating app on a phone.

Person A owns the account, but person B also knows about it. ‘A’ logs in with username and password, and then presses “yes” on the phone app when prompted - they get in and accesses the account. An hour later ‘B’ tries the same, but ‘A’ gets a prompt on their phone, which they don’t allow. ‘B’ cannot get in, and ‘A’ also knows that someone tried to get in to the account.

In other words, simply knowing all the details, and even knowing that an account has MFA enabled to another device, isnt enough.

Will my email provider allow this?

Most do, yes. Exchange (Office365) does, Gmail, Yahoo… there is typically no cost either, since its in everyone’s interests to keep accounts secure.

Is it just for emails?

No, it can be for lots of things. Pretty much anything that has an account on the internet can have MFA set up. This can include (as examples) bank apps which use fingerprint confirmation, or amazon which sends a code to your phone, or LinkedIn needing an authentication app code.

We can help anyone set up MFA on nearly any sort of account. Read more about our secure services here

‘Secure It’

Credit via unsplash for images:

flyd2069

danny144

frederikli

Chris Smith
Previous

Why do drives fail? (How to tell, and what to do)
Next

Upgrading a computer - RAM (memory)