Skip to main content

Multi-factor authentication

Multi-factor authentication (MFA) is one of the most effective ways to protect your valuable information and accounts against unauthorised access.

Icon of a question mark inside a speech bubble

What is it?

Multi-factor authentication (MFA) is a security measure that requires two or more proofs of identity to grant you access.

How does it work?

Multi-factor authentication typically requires a combination of something the user knows (pin, secret question), something you have (card, token) or something you are (finger print or other biometric).

Businesses as well as individuals should implement MFA wherever possible. Some MFA options include, but are not limited to:

  • Physical token
  • Random pin
  • Biometrics / fingerprint
  • Authenticator app
  • Email
  • SMS


MFA offers significantly more powerful security and protection against criminals.

They might manage to steal one proof of identity such as your PIN, but they still need to obtain and use the other proofs of identity to access your account.


To download publications and products regarding the MFA campaign, and all other campaigns to support you or your staff, visit the cyber security campaign resources page.

Content complexity
This rating relates to the complexity of the advice and information provided on the page.
Was this information helpful?
Was this information helpful?

Thanks for your feedback!


Tell us why this information was helpful and we’ll work on making more pages like it