What is Two-Factor Authentication (2FA)?
Two-factor authentication adds a second verification step beyond your password, making accounts much harder to compromise.
Two-factor authentication (2FA) adds a second layer of security to logging in. Instead of just a password, you also provide a second proof of identity — like a code from your phone. Even if someone steals your password, they still can't get in.
The Three Factors:
- Something you know: A password or PIN
- Something you have: A phone, security key, or token
- Something you are: A fingerprint or face scan
2FA combines two of these categories.
Common 2FA Methods:
- Authenticator apps: Time-based codes (TOTP)
- SMS codes: Texted to your phone (weaker but common)
- Hardware keys: Physical devices like YubiKey (strongest)
- Push notifications: Approve a prompt on your device
Why It Matters:
Passwords get leaked, reused, and phished constantly. A second factor dramatically reduces the chance an attacker can access your account with just a stolen password.
FAQ
Is SMS-based 2FA safe?
It's better than nothing, but SMS can be intercepted or hijacked via SIM-swapping. Authenticator apps or hardware keys are more secure choices.
What's the difference between 2FA and MFA?
2FA uses exactly two factors. MFA (multi-factor authentication) is the broader term for using two or more. All 2FA is MFA, but MFA can involve more than two.