There is no question that multi-factor authentication has grown in popularity; it is often required in workplaces now, especially in sensitive sectors like banking, healthcare and law enforcement – and legislation encourages it. This approach relies on three main factors: what you have – devices like a USB or swipe card; who you are – biometrics such as facial, voice or fingerprint identification; and what you know – passwords.
Unfortunately, although it sounds like the most basic, this third factor is often not given enough priority, as too many people rely heavily on the belief that the other factors required for authentication can make up for weak or poorly-protected passwords. But it is important to remember that there can be flaws with the other parts of the process, even if they rely on advanced technology.