the ATM card is something only the user possesses and no one else. So, the ATM card is a possession factor here. When we use a hardware token to authenticate ourselves, the hardware token is also considered a possession factor.
The possession factor is often used with the knowledge factor to authenticate a user. For example, we use a PIN along with an ATM card. Here, the ATM card is a possession factor that only the user possesses, and the PIN is a knowledge factor that only the user knows. So, authenticating a user using a possession factor as well as a knowledge factor is considered more secure. Even if an attacker manages to get the PIN or password, the attacker won’t be able to access the account if he cannot possess the ATM card or the hardware token.
Inherence Factor
The inherence factor refers to something that is an essential characteristic of a user. For example, biometrics is an example of an inherence factor. Each user has a unique fingerprint, iris or voice. And, it is very difficult for an attacker to fake the fingerprint, iris or voice of a user. Hence, biometrics such as fingerprints, iris and voice are considered authentication factors.
As an inherence factor is an essential characteristic of a user and no one else other than the intended user can provide the inherence factor for authentication, an authentication system that uses an inherence factor is considered the most secure.
What is 2 Factor Authentication?
When an authentication system uses two different authentication factors, we call it 2 Factor Authentication. For example, authentication using an ATM card and PIN is an example of 2 Factor Authentication. Here, both the knowledge factor and the possession factor are used for authentication. Authentication using a password and an OTP sent over a mobile phone is also considered 2 Factor Authentication. As only the intended user possesses the mobile phone, an OTP sent over the mobile phone is considered a possession factor.
As 2 Factor Authentication uses two different factors of authentication, it is considered more secure than authentication using a single factor alone. Even if an attacker manages to compromise one authentication factor, the attacker still won’t be able to access the account if he does not have any knowledge of the second authentication factor.






0 Comments