Think Positive Cyber

Today I learned that Multifactor Authentication (MFA) is a core objective in CompTIA Security+ SY0-701 Domain 4.6, and it focuses on verifying identity using multiple authentication factors. MFA is built around four categories: something you know, something you have, something you are, and somewhere you are. I learned that true multifactor authentication must use factors from different categories. Two passwords do not count as MFA. For the Security+ exam, understanding these distinctions is critical because exam questions often test whether you recognize real multifactor authentication versus single-factor authentication with multiple prompts.

I learned that “something you know” includes passwords, passphrases, PINs, secret words, and even a pattern used to unlock a smartphone. This is the most common authentication factor in cybersecurity, but it is also the most vulnerable to phishing, brute force attacks, and credential theft. “Something you have” includes smart cards, USB security keys with certificates, hardware tokens, software tokens, and SMS codes sent to a mobile phone. These tokens often generate pseudo-random one-time passwords (OTPs), which significantly increase security when combined with a password.

I also learned that “something you are” refers to biometrics such as fingerprint scans, iris scans, and voice recognition. These systems store a mathematical representation of the biometric, not the actual image. “Somewhere you are” involves location-based authentication, such as detecting a login from a different country only minutes after a previous session. IP addresses are not perfect for location tracking, especially with IPv6 and proxy use, but GPS and mobile geolocation services can provide more precise data. Overall, MFA reduces the risk of account compromise by requiring attackers to defeat multiple independent security controls, which is a key cybersecurity best practice emphasized throughout Security+ SY0-701.