As data breaches and loss of user information becomes an unfortunate norm these days, more end users are starting to adopt the Two Factor Authentication (2FA) method to add an extra layer of security to their various online accounts that support 2FA.
First, let’s do a quick review of 2FA and what it provides from a security perspective.
When a new account is created at any website/service, you typically select a username and password to access that account in the future. You then validate that account through email with a unique link that validates your reception of that email. At this point the account is active and you can access it with your username and password.
If the service supports it, you may be offered to set up 2FA once your account is ready or you may need to go into advanced security settings to begin the process of establishing 2FA on the account.
2FA is established when the second factor of authentication is validated and added to the account. The vast majority of services/websites utilize your wireless phone number and an SMS text message. In this test message, a code is sent to that phone and you then enter that code into a form on the website/services site to validate access using this second factor of authentication. The username and password are the first factor.