Skip to content

Two factor authentication

If you only have 5 minutes:

  • Always choose services and apps that offer two factor authentication (TFA) as they are the most secure
  • Always contact support if you see activity on the service that you do not recognise

  • If any service emails you to tell you that there has a been a suspicious log on attempt from a device or browser, always change your password


What is… two factor authentication?

Two-factor authentication (TFA) adds an additional layer of security to your log on process by making it harder for attackers to gain access to your devices or online accounts. It means that knowing your password alone is not enough to pass the security and log on.

TFA works like this:

  1. You attempt to log on to a website
  2. The website sends a message to your personal mobile (typically) that then allows you to recognise you are holding the device
  3. The website then logs you on

Some businesses, for example, your bank, might give you a personal code generator and other businesses might ask you to download a smartphone app to generate a code, but the principle is the same.