Name: OGUNWALE SAMSON GBENGA

COURSE:RC8
KM-029

INTRODUCTION

What is multi factor- authentication (MFA):

Multi-factor authentication (MFA) is a security system that requires multiple methods
of verification from independent categories of credentials to verify a user's identity
for a login or other transaction.
MFA is a security process that requires a user to provide two or more authentication
factors to access a system, network, or application. This adds an additional layer of
security to the traditional username and password combination. Multi-factor
authentication is a multi-step account login process that requires users to enter more
information than just a password.
The goal of MFA is to create a layered defense and make it more difficult for an
unauthorized person to access a target, such as a physical location, computing device
For examples Imagine you logged into your email account. With multi-factor
authentication, after entering your password, you receive a unique code on your
phone. You then enter this code to complete the login process. In this scenario, the
password is something you know, and the code sent to your phone is something you
have. By combining these two factors, you ensure a more secure login process,
making it harder for unauthorized access to your account. that’s just a pure example
of what MFA is
Authentication Factors
Here are some authentication factors that best explain how a multi-factor
authentication works
1. Knowledge Factor (something you know): password, PIN, passphrase
2. Possession Factor (something you have): smart card, token, phone
3. Biometric Factor (something you are): fingerprint, facial recognition, voice
recognition
4. Location Factor (somewhere you are): geolocation-based authentication
5. Time Factor (a specific time): one-time password (OTP)

MFA Examples:
Here are some multi-factor authentication factors that are been use for verification
1. SMS OTP: receive a code via text message
2. Authenticator Apps: Google Authenticator, Microsoft Authenticator
3. Smart Cards: physical tokens storing cryptographic keys
4. Biometric Authentication: facial recognition, fingerprint scanning
5. Voice Recognition: spoken passwords or phrases
6. Push Notifications: approve login requests on another device
7. U2F Keys: physical security keys using public key cryptography

How does it work In preventing phishing in cyber security

Briefly what’s phishing; phishing is simply like when someone tries to trick you into
giving away your personal info, like passwords or credit card details, by pretending to
be someone trustworthy, like a bank or a company.
How does it work in preventing phishing in cyber security; Because multi-factor
authentication (MFA) adds additional security layers on top of passwords, it helps
prevent phishing attacks in the cybersecurity space. Even if a hacker manages to
deceive a user into divulging their password in a phishing attempt, multi-factor
authentication (MFA) demands other verification measures, including a one-time
code texted to the user's phone or biometric verification using their fingerprint.
Phishing attempts are less successful since the attacker usually can't get the second
factor (such as the user's phone number or fingerprint), which prevents them from
quickly completing the login procedure. By taking this extra precaution, the likelihood
of unauthorized access via credential theft is greatly decreased.Because multi-factor
authentication (MFA) adds additional security layers on top of passwords, it helps
prevent phishing attacks in the cybersecurity.
In the world of cybersecurity, multi-factor authentication (MFA) is like adding extra
layers of security to your online accounts, making it tough for cyber attackers to
break in. Let's say a hacker gets hold of your password through a phishing attack. If
you have MFA set up, they would still need the second factor, like a code sent to your
phone, to get in. This additional step acts as a barrier, even if they trick you into
giving away your password. So, MFA is a powerful tool in preventing phishing attacks
and keeping your accounts safe from cyber threats.

Conclusion
In conclusion, phishing attacks pose a significant threat by exploiting human trust to
gain sensitive information. However, multi-factor authentication (MFA) provides a
robust defense by adding additional layers of security beyond just passwords. By
requiring multiple verification methods, MFA effectively mitigates the risks posed by
phishing, ensuring that even if credentials are compromised, unauthorized access is
still prevented. This makes MFA an essential tool in modern cybersecurity strategies.