Multi-Factor Authentication

An authentication pattern that requires two or more verification factors — something you know (password), have (phone, token), or are (biometric) — to confirm a user's identity. MFA substantially reduces account compromise from stolen passwords. Accessibility considerations include providing multiple factor options (SMS codes may not work for deaf users; authenticator apps may be inaccessible to some screen reader configurations; biometrics may exclude some disabled users), supporting longer session durations to reduce re-authentication burden, and ensuring recovery flows are accessible to users who lose a factor.