Multi-factor authentication (MFA) is a security method used in user authentication. What is its main goal?
Think about how MFA increases security beyond just a password.
MFA requires users to provide multiple types of evidence, such as something they know (password), something they have (a phone), or something they are (fingerprint), making unauthorized access harder.
Among common authentication methods, which one relies on a secret known only to the user and the system?
Consider which method requires memorizing a secret string.
Password-based authentication uses a secret password shared only between the user and the system to verify identity.
Consider a system that uses fingerprint data stored as a biometric template. What happens if the template is missing when the user tries to authenticate?
Think about what happens if required data for verification is not available.
If the biometric template is missing, the system cannot verify the userβs fingerprint, so authentication fails or returns an error.
Compare these authentication methods and select the one that best protects against password theft.
Consider which method adds an extra layer beyond just the password.
Multi-factor authentication combining a password and a hardware token requires both factors, making it much harder for attackers to gain access even if the password is stolen.
Explain why adding a salt to password hashes improves security compared to storing just the hash of the password.
Think about how attackers try to guess passwords using common hash lists.
Salting adds unique random data to each password before hashing, so attackers cannot use precomputed hash tables (rainbow tables) to reverse the hashes easily.