- Home
- Solutions
- Identity Authentication
- Multi-Factor Authentication
Multi-Factor Authentication
Multi-Factor Authentication
Strong authentication is defined as a layered authentication approach relying on two or more authentication factors to establish the identity of the originator or the receiver of information.
Best practices state that two-factor authentication is the minimum standard for confirming an identity. For high-risk transactions, even more robust multi-factor authentication protocols should be used.
Two-factor authentication includes at least two of the following:
- Something you know (passwords, PINs, knowledge-based authentication questions, etc.)
- Something you have (token, card, device, etc.)
- Something you are (physical characteristic – i.e. fingerprint, retina, voice, etc.)
Good solutions support risk-based authentication workflows, letting you adjust requirements based on risks associated with the channel, the user’s location and other transactional details. They easily integrate with other identity tools for more efficient identity management. Alfastack’s authentication solutions include:
Dynamic knowledge based authentication (KBA)
Tests that pull from your customer information to ask questions that only an individual with personal knowledge could accurately answer.
Biometrics, such as fingerprints, retina, voice, and other propriety authenticaiton solutions to confirm the identity of an individual.
Additional form factors, such as One Time Password, that let users authenticate themselves using their existing hardware, instead of requiring additional tokens.
User Experience(UX) and Authentication
An important part of identity authentication is the user experience. It is very crucial to maintain security while not affecting negatively the user experience. This includes not only asking for information from your clients that you absolutely need, but also designing an authentication process that is seamless and easy to use for your clients. In order to accomplish this, it is important to work with an identity authentication company that has the experience and strategy to protect your company and clients while maintaining a streamlined user experience.