Module 2: Multi-Factor Authentication (MFA)

---

What is Multi-Factor Authentication (MFA)?

Multi-Factor Authentication (MFA) adds an extra layer of security to your accounts.

It means you need to use more than just your password to log in. Even if a hacker has your password, they can’t get in without the second factor.

Think of it like a double lock – you need a key (password) and a second method to open the door.

---

The Three Main Types of Authentication Factors

1. Something You Know
   • Your password or PIN
2. Something You Have
   • A smartphone
   • A security key
   • An authenticator app
3. Something You Are
   • Fingerprint
   • Face recognition
   • Voice

MFA uses two or more of these together.

---

Examples of How MFA Works

• You enter your email and password
• Then you get a text message with a code to enter
• Or you use an app that gives you a code
• Or your phone asks for fingerprint or face scan

---

Types of MFA Methods

1. Text Message (SMS) Codes

• A code is sent to your phone
• You type the code to confirm it’s really you
• Easy to use, but not the most secure if someone steals your SIM card

2. Authenticator Apps

• Apps like Google Authenticator, Microsoft Authenticator, Authy
• Generate a code that changes every 30 seconds
• More secure than SMS and work even without internet

3. Push Notifications

• Apps like Duo or Okta send a pop-up to your phone
• You approve or deny the login
• Very quick and user-friendly

4. Security Keys (Hardware Devices)

• USB devices like YubiKey
• You plug it into your computer or tap it on your phone
• Very secure, used by professionals and high-security users

---

Why You Should Use MFA

✅ It protects you if your password gets stolen
✅ It keeps hackers out of your accounts
✅ It’s required by many banks, schools, and companies
✅ It’s free and easy to use for most services

---

Accounts That Should Always Have MFA Enabled

• Email (Gmail, Outlook, etc.)
• Social Media (Facebook, Instagram, TikTok, etc.)
• Online Banking
• Shopping Sites (Amazon, eBay, etc.)
• Work or School Accounts
• Cloud Storage (Google Drive, Dropbox, etc.)

---

What to Do If You Lose Access to MFA

1️⃣ Use backup codes saved when you first set up MFA
2️⃣ Contact the service’s support team
3️⃣ Use a secondary email or phone number if you registered one
4️⃣ Set up more than one method (e.g., app + SMS + backup codes)

---

Mini Quiz (Test Yourself!)

1. What is Multi-Factor Authentication (MFA)?
   • a) A new type of password
   • b) Using two or more ways to prove your identity
   • c) A software update
2. Which is NOT an example of MFA?
   • a) A password and a code sent to your phone
   • b) A password and fingerprint scan
   • c) Just entering your password
3. Which of the following is the most secure MFA method?
   • a) Text message (SMS)
   • b) Authenticator app
   • c) Same password on all accounts
4. Why should you use MFA?
   • a) It’s harder for hackers to break into your accounts
   • b) It slows down your internet
   • c) It makes it easier to remember your password
5. What should you do if you lose access to your MFA device?
   • a) Give up on the account
   • b) Use backup codes or contact support
   • c) Post about it on social media

(Answers: 1-b, 2-c, 3-b, 4-a, 5-b)