Data breaches are common these days. Nothing is safe. Hackers are everywhere and any leak in security leads to a data breach. One of the best ways of avoiding such incidents is protecting resources with passwords (a strong one). But do you really think, only having a password is safe enough? What if I say, ”No”. Well at some level, passwords keep us secure from external threats but not every time.
Most of the time when users want to access any website, they need to provide credentials. It is used to prove a user is who they are claiming to be. In day to day life, one can easily recognized a person over a phone by recognizing a voice or some other things that he says in the beginning of the conservation. One can recognize his friend by his face, weight, height, etc. But it is not possible for computers to recognize users identity by face, or any other mentioned things. So, they require authentication using credentials.
Need of one username and password to authenticate a resource falls under single factor authentication which is not considered safe enough nowadays. Hackers can hack your password by guessing or any other unethical means. So, you need an additional layer of protection. Two-factor authentication is one such layer. In this, users need to verify their identities, after entering the credentials. They can verify their identities using the second factor.
Usually, there are three different types of factors using for verification. These are:
- Something you have: ( token, debit or credit cards, mobile phone, etc.)
- Something you know: ( a secret question, alphanumeric password, atm pin, etc.)
- Something you are: (iris, voice, fingerprint, retina, etc.)
In addition, there are many other factors, they are:
Present location: Suppose you access your resources from the US and half an hour later, someone tries to access the same resources from UK, the resources will be blocked for verification. This saves, resources from getting hacked.
IP address: IP address tells from where the resource is being accessed. When someone is trying to authenticate system with different IP, it will send a verification code to registered email id for verification.
So, friends, go with a double layer security(two-factor authentication) system, if you really care for your resources and want them secure from hackers and data thieves.