Security Beginner

What is Two-Factor Authentication (2FA)?

A security method requiring two different forms of identification before granting access to an account.

2FA combines something you know (password) with something you have (phone, hardware key) or something you are (biometrics). Even if a password is compromised, the second factor prevents unauthorized access.

Methods include TOTP apps (Google Authenticator, Authy), SMS codes (less secure due to SIM swapping), hardware keys (YubiKey), push notifications, and biometric factors. 2FA significantly reduces account compromise risk.

Learn More About This Topic

Linux Security Essentials

Related reading

Windows PKI & Certificates

Related reading

SOC Analyst Fundamentals

Related reading

Related Terms

JWT (JSON Web Token)

A compact, self-contained token format used for securely transmitting information between parties as a JSON object.

Brute Force Attack

An attack method that systematically tries all possible combinations of passwords or keys until the correct one is found.

Session Hijacking

An attack where an adversary takes over a legitimate user session by stealing or predicting the session identifier.

Configuration entries that define which network traffic is allowed or blocked based on source, destination, port, and protocol.

An attack where malicious SQL code is inserted into application queries through user input to access or manipulate the database.

Input Validation

The process of verifying that user-supplied data meets expected formats, types, and ranges before processing it.

View All Security Terms →