Three-factor authentication (3FA) is an extension to 2FA and add’s a third identify confirmation credential to the authentication process.
Multifactor authentication dramatically improves security for all organizations regardless if you are using passwords, passkeys or other forms of authentication. 3FA increases the level of security reducing the risk that an attacker could fake or steal all three required credentials required in 3FA.
NL3’s 3FA requires the following Authentication factors:
- Something the user knows – In our case we use a combination of the username for their account & the knowledge of whether or not they are currently authenticating to the site listed in the approval action to unlock the account
- Something the user has – NL3 requires a FIDO2 compliant device to be registered with us prior to authentication.
- Something the user inherently is – This factor includes any biological traits the user has that are confirmed for log in. This includes any FIDO2 compliant biometrics such as retina scans, iris scans, fingerprint scans, or facial recognition.