Two-factor authentication (2FA) requires two different ways to prove a user's identity, rather than just a password to access their account. It adds double identity verification to secure your account. Apart from entering a password, the user also has to provide another piece of information which is known only to them.
How 2FA works?
First, the user needs to enter their credentials (username and a password). Then, they will be required to provide another piece of information to gain access. This second factor comes from one of the following categories:
1. Knowledge factor (something the person knows)
Knowledge factors include credentials and personal information about the users, such as a password or the answer to a security question.
2. Possession factor (something you have)
Possession factors rely on the user maintaining physical possession of an object. The user should have any one of the following:
a). The mobile number that gets the OTP
b). A security key to access the system
c). An OTP authentication app
Difference between 2FA and MFA
2FA is a subset of multi-factor authentication
(MFA). These two terminologies often get mixed together, but they are two different things. The difference between MFA and 2FA is simple. 2FA uses exactly two factors to verify the identity of a user, whereas MFA requires two or more factors for verification.