Two-Factor Authentication
What is two factor authentication?
Two factor authentication (2FA), put plainly, is an extra layer of security. It makes sure that the person logging into an account is exactly who they say they are.
If you enter your password and username, with 2FA you don’t immediately get into your account. Instead, you will have to provide just one more piece of information. This could be a PIN (personal identification number), something you enter on your phone, some small piece of hardware, voice-based, or in some more advanced cases it could be a kind of fingerprint/eye scan.
Yes, there are several different kinds of 2FA…so let’s break them down.
The most common types of 2FA are hardware tokens, and SMS-text messages, software tokens, and push notifications. Hardware tokens can be small key fob like objects that will generate a code every 30-seconds that you will enter into your device, or something small you plug into your computer.
SMS 2FA sends a one-time use password to the user’s phone after they have entered their username and password. A voice-based 2FA is rarely used anymore but can be helpful for people who do not have smart phones. This authentication process delivers the code verbally over the phone. Whereas software and push notifications are done on the device you are logging onto the site or app with. This is done either by an app that provides a temporary code, or an authentication pops up on the device being used and the user accepts it.
Why do you need it?
No, your password is not good enough. Even if it is slightly more complex than your pets name and birthday, (sorry).
An average hacker will probe over 20 million Microsoft accounts a day, which means they test a list of stolen passwords and see what works. Cybercrime is becoming more and more sophisticated while many security systems remain in the dark ages. If you pair this with the flaws of human behavior, purely having one simple password will not keep your information as safe as you might think.
The leading cause of security breaches are leaked, weak, stolen, and reused passwords. In fact, 81% of security breaches are because of those weak or stolen passwords, and 61% of people use the same password for multiple accounts. While it is wise to follow the rules for creating a strong password, that does not necessarily mean your information is guaranteed safety.
If a hacker was to get a hold of that password that you use for everything, they could get into your favorite coffee shop app, your email, or even your bank account. The only thing that could stop them…two factor authentication. The hacker may get past your username and password but can’t get the temporary code that would be sent directly to you.
2FA also can protect you from phishing emails! If you are sent an email that tries to get you to click on a bad link, you’ll know that it’s not real when you don’t get a 2FA email.
Having two factor authentication may add a couple extra seconds to your login process, but will save you time, money, and grief down the line.
How CTS can help!
One service included in most CTS plans is Multi Factor Authentication. This is included in our advanced security plan, managed security plan, and full MTSP plan.
To learn more information about the plans check out our in-house IT help desk or tool stack. Make sure you watch our recorded webinar on multi factor authentication by clicking here!
We are determined to help you keep your information safe within your business and within your personal life. One of the ways we are able to do that is to provide 2FA! Visit our website today to learn how to get started!
