The,Concept,Two,Factor,Authent computer The Concept of Two Factor Authentication
----------------------------------------------------------Permission is granted for the below article to forward,reprint, distribute, use for ezine, newsletter, website,offer as free bonus or part of a product for sale as longas no changes a Gone are those times when the companies and the organisations didn't need a hi-tech system to handle them. Owing to the considerable increase in the business sector and thus, an enormous increase in the complexity of the organisational struc
Two-Factor Authentication (also abbreviated as 2FA) is aform of authentication where it authenticates combining the one factorauthentication with another factor regardless of software or hardware. In thistype of authentication, there will be a requirement where you need to presentwhat you have that the server know before being authenticated. There are many2FA products in the market now and also many types of 2FA products. A few ofthe popular one are PKI USB Token, OTP Token and also Smart Card. Thesehardware will provide another piece of information that is required to succeedthe authentication.Why Two-Factor Authentication?Better Security. Having only One-Factor, attacker who knowsyour username and password can always authenticate themselves in until youchange your password. It can also help out in preventing any brute forcepassword attack. 2FA has already been a popular and famous requirement in anybanking industry especially performing a banking transaction. Sometimes it canbe inconvenient however, people still can accept the level of inconvenience dueto the poor security of having only one authenticating method.How Two-Factor Authentication Works?Well, even though there are various type of 2FA product inmarket, each type of product works the same way where during any authentication,the user will be required to provide his/her username, password and the secondfactor here. For OTP type of 2FA, the second factor is the random numbergenerated with the device. While for the PKI USB Token, it is to plug in thetoken and perform a digital signature on the transaction and then send to theserver for verification. Any critical authentication should not work if the secondfactor is not presented.And The Conclusion Is?The conclusion here is that, two factor is the second factorof authentication where it authenticates what you have. There is also existenceof Three-Factor Authentication where it authenticates what you are as thesequence of technology below:First Factor - What you know.Second Factor - What you have.Third Factor - What you are.An example of Three-Factor Authentication here isfingerprint or facial scan. The third factor however is quite inconvenience toimplement and it is very costly. Therefore, 2FA is the best so far in ITsecurity juggling the balance of convenience and security. Do take note that2FA is still vulnerable to Man in the Middle attack to certain types of 2FAproduct and Man in the Browser attack for all the 2FA product. You can refer tothose two entries on how to prevent from being attacked or hacked. Article Tags: Factor Authentication, Two-factor Authentication, Authentication Where, Second Factor
The,Concept,Two,Factor,Authent