Security Beginner

What is Two-Factor Authentication (2FA)?

A security method requiring two different forms of identification before granting access to an account.

2FA combines something you know (password) with something you have (phone, hardware key) or something you are (biometrics). Even if a password is compromised, the second factor prevents unauthorized access.

Methods include TOTP apps (Google Authenticator, Authy), SMS codes (less secure due to SIM swapping), hardware keys (YubiKey), push notifications, and biometric factors. 2FA significantly reduces account compromise risk.

Learn More About This Topic

Linux Security Essentials

Related reading

Windows PKI & Certificates

Related reading

SOC Analyst Fundamentals

Related reading

Related Terms

A social engineering attack that uses fraudulent communications to trick people into revealing sensitive information or installing malware.

RBAC (Role-Based Access Control)

An access control model where permissions are assigned to roles, and users are assigned to roles rather than getting permissions directly.

Secret Management

The practice of securely storing, accessing, and rotating sensitive credentials like API keys, passwords, and certificates.

SAST (Static Application Security Testing)

Automated analysis of source code to find security vulnerabilities without executing the application.

JWT (JSON Web Token)

A compact, self-contained token format used for securely transmitting information between parties as a JSON object.

An authorization framework that allows third-party applications to access user resources without sharing passwords.

View All Security Terms →