Definition

strong authentication

TechTarget Contributor

By

TechTarget Contributor

Strong authentication is any method of verifying the identity of a user or device that is intrinsically stringent enough to ensure the security of the system it protects by withstanding any attacks it is likely to encounter.

Strong authentication is a commonly-used term that is largely without a standardized definition. According to the European Central Bank (and the many organizations that follow its guidelines), strong authentication combines at least two mutually-independent factors so that the compromise of one method should not lead to the compromise of the second. Additionally, the authentication method must include one non-reusable element, which cannot easily be reproduced or stolen from the Internet.

The term strong authentication is often used synonymously with two-factor authentication (2FA) or multifactor authentication (MFA). However, that usage is misleading because some types of very secure authentication rely on a single authentication factor.

In some cases, for example, systems using multiple challenge / response answers are considered strong authentication. However, such systems are based on multiple instances of the knowledge factor, rather than multiple independent factors and as such are single-factor authentication (SFA). Similarly, some types of biometric authentication are reliable enough when used alone that they are considered strong authentication.

This was last updated in February 2015

Next Steps

Expert David Strom reviews the benefits and features of Dell Defender multifactor authentication software.

Continue Reading About strong authentication

Strong authentication best practices

What are the criteria for a strong authentication system?

Are 'strong authentication' methods strong enough for compliance?

What is network scanning? How to, types and best practices
Network scanning is a procedure for identifying active devices on a network by employing a feature or features in the network ...
What is wavelength?
Wavelength is the distance between identical points, or adjacent crests, in the adjacent cycles of a waveform signal propagated ...
subnet (subnetwork)
A subnet, or subnetwork, is a segmented piece of a larger network. More specifically, subnets are a logical partition of an IP ...

What is endpoint security? How does it work?
Endpoint security is the protection of endpoint devices against cybersecurity threats.
What is cyber attribution?
Cyber attribution is the process of tracking and identifying the perpetrator of a cyberattack or other cyber operation.
What is SSH (Secure Shell) and How Does It Work?
SSH (Secure Shell or Secure Socket Shell) is a network protocol that gives users -- particularly systems administrators -- a ...

CIO

What is transfer learning?
Transfer learning is a machine learning (ML) technique where an already developed ML model is reused in another task.
What is ROI? How to calculate return on investment
Return on investment (ROI) is a crucial financial metric investors and businesses use to evaluate an investment's efficiency or ...
What is corporate social responsibility (CSR)?
Corporate social responsibility (CSR) is a strategy undertaken by companies to not just grow profits, but also to take an active ...

What is DEI? Diversity, equity and inclusion explained
Diversity, equity and inclusion is a term used to describe policies and programs that promote the representation and ...
What is payroll software?
Payroll software automates the process of paying salaried, hourly and contingent employees.
organizational network analysis (ONA)
Organizational network analysis (ONA) is a quantitative method for modeling and analyzing how communications, information, ...

Customer Experience

What is a 360-degree customer view?
The 360-degree customer view is a comprehensive approach to understanding customers by compiling their individual data from ...
What are virtual agents and how are they being used?
A virtual agent -- sometimes called an intelligent virtual agent (IVA) -- is a software program or cloud service that uses ...
What is first call resolution (FCR)?
First call resolution (FCR) is when contact center agents properly address a customer's needs the first time they call so there ...

Close