21. Methods of Authentication
Types of Authentication
There are two types of authentication:
- Single-factor authentication (SFA)
- Multi-factor authentication (MFA)
Single-factor Authentication
Use of just one of the three available factors (something you know, something you have, something you are) to carry out the authentication process being requested.
Multi-factor Authentication
Use of two or more distinct instances of the three factors of authentication (something you know, something you have, something you are) for identity verification.
Common best practice is to implement at least two of the three common techniques for authentication:
- Knowledge-based
- Token-based
- Characteristic-based
Knowledge-based authentication are like those you store in your mind, such as your phone password or ATM PIN.
Token-based authentication are the physical forms of verification items, such as an ID card or an ATM card.
Characteristic-based authentication are the physical unique traits of our body, such as fingerprint or iris.
Single-factor Authentication Risk
For single-factor authentication, the challenge is ensuring that the password is reset only for the correct user and not someone else pretending to be that user. Social engineering protection is needed.
Better Security
For better security, a second and even a third form of authentication can be set in place to make the process more secure.
If two or more different factors are used, then it is considered multi-factor authentication.