Find the definition of the most commonly used cyber security terms in our glossary below.

What is Two-Factor Authentication in cyber security?

Two-Factor Authentication (2FA), also known as dual-factor authentication or two-step verification, is a security authentication process that verifies a user's identity using two distinct factors. The first factor is something the user knows, such as a password. The second factor is something the user has, such as a hardware token, a bank card, or a smartphone (to receive OTPs or use biometric authentication). By using two disparate elements, 2FA protects user credentials and resources accessed, adding an extra layer of security compared to password-only authentication. If one factor is compromised (like a password), the attacker still needs the other factor (like your phone) to access the information, making it significantly harder for unauthorized individuals or systems to gain access.