Multi Factor Authentication and Passphrases
Protect your accounts from cybercriminals with a secure password or passphrase.
Enable Multi-factor authentication (MFA) is one of the most effective ways to protect your valuable information and accounts against unauthorised access.
What is it and how does it work ?
Multi-factor authentication (MFA) is a security measure that requires two or more proofs of identity to grant you access.
Multi-factor authentication typically requires a combination of something the user knows (PIN, secret question), something you have (card, token) or something you are (fingerprint or other biometric).
Businesses as well as individuals should implement MFA wherever possible. Some MFA options include, but are not limited to:
- Physical security key
- Biometrics, such as fingerprints
- Authenticator mobile app
- Passkey
- SMS
MFA offers significantly more powerful security and protection against criminals.
They might manage to steal one proof of identity such as your PIN, but they still need to obtain and use the other proofs of identity to access your account.
Dump Passwords - Use Passphrases
A passphrase uses four or more random words as your password. For example, ‘crystal onion clay pretzel’ or 'red house sky train'. The longer the passphrase, the harder it is for adversaries to crack.
A unique, strong passphrase can better protect your account compared to a simple password.
To create a strong passphrase you should consider making it long, unpredictable and unique.
If a website or service requires a complex password including symbols, capital letters, or numbers, then you can include these in your passphrase.
Use a password manager to create and manage passwords
If you have multiple accounts with different passwords or passphrases, a password manager can help control them for you. A password manager is an application or program that stores passwords or passphrases for all of your accounts. With a password manager, you only need to remember one master password.
You can also use a password manager to create secure, long and randomly generated passwords. The longer and more random, the better. Make sure to generate a different password for every account.
