Difference between revisions of "Multi-factor authentication (MFA)"
Jump to navigation
Jump to search
Tags: Mobile web edit, Mobile edit |
Tags: Mobile web edit, Mobile edit |
||
| Line 3: | Line 3: | ||
== Examples == | == Examples == | ||
* Bank card + PIN number | * Bank card + PIN number | ||
| − | * one-time password ([[OTP]]) tokens | + | * [[one-time password]] ([[OTP]]) tokens |
* [[certificates]] | * [[certificates]] | ||
* [[smart cards]] | * [[smart cards]] | ||
Revision as of 11:04, 9 March 2020
wikipedia:Multi-factor authentication (MFA) is a method of computer access control which a user can pass by successfully presenting several separate authentication stages through credentials based on knowledge (something you know), possession (something you have), and inherence (something you are), in other words, it is a system that requires more than one method of authentication from a self-reliant listing of credentials to verify a user's identity for login.
Examples
- Bank card + PIN number
- one-time password (OTP) tokens
- certificates
- smart cards
2FA Mobile applications
Different 2FA open-source mobile app are available such us :
- FreeOTP (Android, iOS): free and open-source
Android: Download from Google Play[1] or F-Droid[2] iOS: Download from the App Store[3]
- AndOTP (Android): free and open-source
Android: Download from Google Play[5] or F-Droid[6]
- Google Authenticator (Android, iOS): free and open-source
- Microsoft Authenticator
See also
- wikipedia:Help:Two-factor_authentication
- VPN: IPsec (Openswan), OpenVPN, Forticlient, GlobalProtect (PAN-OS), WireGuard (Linux Kernel), Tailscale, PulseSecure, WebVPN, SoftEther, ESP, IKE, AWS VPN, Zerotier, VPN client, Pritunl, GCP Cloud VPN
- MFA: FreeOTP, Google Authenticator, Okta Verify, Duo Security, Microsoft Authenticator, Strong customer authentication, Dualshield, HOTP, TOTP, OATH, Authy, Push authentication, google-authenticator, Duo Mobile,
DenyAllExceptListedIfNoMFA, Configure MFA on AWS, LastPass Authenticator mobile app - Security: Security portfolio, Security standards, Hardening, CVE, CWE, Wireless Network Hacking, vulnerability scanner, Security risk assessment, SCA, Application Security Testing, OWASP, Data leak, NIST, SANS, MITRE, Security policy, Access Control attacks, password policy, password cracking, Password manager, MFA, OTP, UTF, Firewall, DoS, Software bugs, MITM, Certified Ethical Hacker (CEH) Contents, Security+ Malware, FIPS, DLP, Network Access Control (NAC), VAPT, SIEM, EDR, SOC, pentest, PTaaS, Clickjacking, MobSF, Janus vulnerability, Back Orifice, Backdoor, CSO, CSPM, PoLP, forensic, encryption, Keylogger, Pwn2Own
Advertising:
