2FA
2FA
ELI5 — The Vibe Check
2FA is short for Two-Factor Authentication. Two locks instead of one. Password plus a code from your phone (or a hardware key). Hackers who steal just your password hit a dead end. Every important account you have should have 2FA turned on right now.
Real Talk
2FA is a subset of MFA requiring exactly two authentication factors. The second factor is typically a TOTP code from an authenticator app (Google Authenticator, Authy), an SMS code, a push notification, or a hardware security key (YubiKey). SMS-based 2FA is weaker due to SIM-swapping attacks.
When You'll Hear This
"We enforced 2FA for all users after the breach." / "The account was compromised because 2FA wasn't enabled."
Related Terms
Authentication (AuthN)
Authentication is proving you are who you say you are.
Biometric
Biometric authentication uses your body as your password — fingerprint, face, iris scan.
MFA (MFA)
MFA stands for Multi-Factor Authentication. It's the umbrella term for requiring multiple proofs of identity. 2FA is MFA with exactly two factors.
TOTP (TOTP)
TOTP (Time-based One-Time Password) is the 6-digit code that changes every 30 seconds in apps like Google Authenticator.
Two-Factor Authentication (2FA)
2FA means you need two things to log in: something you know (password) and something you have (your phone).