2FA

22/04/2025

But what is the 2FA ?

2FA ? You're probably wondering what that means. Well, it simply stands for Two-Factor Authentication. In other words, it's a security method that requires two steps to verify a user's identity. Instead of relying on a single password, 2FA adds an extra layer of security, making it harder for those with bad intentions to access your accounts.

With cyberthreats on the rise, passwords alone are no longer enough to protect your data. The 2FA adds a second verification stage, providing even greater protection for your user accounts.

Let's take a look at how 2FA works and why it has become essential for securing your personal and business accounts.

And how does it work ?

The 2FA works on the principle of these three elements :

What you know : your password, a PIN or a security question
What you have : a phone, computer, tablet or authentication application
What you are : fingerprints, retinal scanner, facial recognition

You start by entering your login and password. Then you receive a code by text message, email or app. You then enter this code and you are logged in.

The different types of 2FA

  • SMS authentication : The code is sent by SMS to the user's phone. This is one of the most common forms, but vulnerable to SIM swapping attacks
  • Authentication applications (TOTP) : Use of applications such as Google Authenticator, Authy, or Microsoft Authenticator that generate temporary codes
  • Physical security keys (U2F) : Physical devices such as YubiKey or Google Titan that need to be plugged in to authenticate
  • Push notifications : The user receives a notification on their smartphone (via Google or Microsoft, for example) and simply validates the connection
  • Biometrics : Using fingerprints, facial recognition or iris recognition as a second authentication factor

Why is it essential ?

The 2FA effectively protects against phishing and data violations : even if your password is compromised, the hacker will not be able to access your account without the second factor.

It is also essential for securing sensitive information, such as your bank accounts, emails and social networks. 

What are the advantages and disadvantages ?

AdvantagesDisadvantages
Additional protectionSMS can be intercepted
Ease of useRisks in the case of loss of the second factor (phone, key)
Prevention of attacksRepeated code entry
More and more services available with 2FACan have a certain cost for small businesses

And how is it activated ?

To activate 2 Factor Authentication on your accounts : 

1. Go to the security settings for your account (Google, Facebook, Apple, etc.)

2. Activate two-factor authentication

3. Choose your preferred method (SMS, application, security key)

4. Follow the instructions to complete activation and test your connection. 
Important ⚠️ Remember to write down your emergency codes in a safe place to avoid being blocked if you lose access, and regularly update your telephone number and e-mail address to ensure secure access.

Have we already moved towards triple authentication (3FA) ?

Although 2FA is still relatively new, it could soon evolve into three-factor authentication (3FA). The idea would be to add a biometric factor, such as a fingerprint or facial recognition, or other more advanced technologies.

But isn't there a serious risk of complicating access to accounts even more ? If simply logging into an account required too many steps, it could quickly become restrictive for users. So, the aim remains to strengthen security without sacrificing the ease of use.

In conclusion

At a time when cyberthreats are on the increase, 2FA has become an essential tool for protecting online accounts. By adding an extra layer of security, it considerably reduces the risks associated with password theft and malicious attacks.

In fact, 2FA is considered a strong security measure, and is strongly recommended by the RGPD and the Swiss nLPD. Its implementation enables organisations to demonstrate their compliance with data protection requirements, by strengthening security against unauthorised access and data violations.

If you haven't already done so, we recommend that you activate two-factor authentication on your most sensitive accounts (email, social networks, banking services, etc.). It only takes a few minutes, but it can make all the difference to your security !

Need some help ? Check out these resources for activating 2FA on different platforms.

➡️ 2FA activation guide for Google
➡️ Configuring 2FA on Apple

Protecting your data has never been easier, so what are you waiting for ? 😉