Answer:
Multifactor authentication is a more secure way of allowing your customer to prove he is who he says he is. He can authenticate using three methods - by something he knows (a password), something he has (a token), or something he is (a fingerprint). Multifactor authentication means that you require at least two of these methods before your customer is allowed into his account. One common example is requiring a password (something you know) and a one-time password read from a token device (something you have).
Two-way authentication deals with your customer authenticating himself to your web server and your web server authenticating itself to your customer. One common method is to have your customer pick an image or phrase at his first login. Every time he enters his username, your server will then reproduce that image on the screen. After he sees his image, he knows it's safe to enter his password. Two-way authentication is one means of combating a website spoofing attack, because your customers are less likely to enter their password onto a malicious site that did not reproduce the image they've grown accustomed to seeing.
print
share