Definition: A security process that requires users to provide two or more verification factors to gain access to a system, application, or account. MFA enhances security by combining something the user knows (e.g., password), something the user has (e.g., a smartphone or hardware token), and/or something the user is (e.g., fingerprint or facial recognition).
Example: Logging into an email account may require entering your password (something you know) and then confirming a code sent to your phone (something you have).
Purpose: To reduce the risk of unauthorized access and protect sensitive information even if a password is compromised.