Skip to main content

MFA - Multi-factor authentication with eduMFA

Multi-factor authentication

MFA (multi-factor authentication) is a security method that requires additional verification steps to protect access to an account or system. MFA can combine several factors from different categories such as knowledge (password), possession (smartphone) and biometrics (fingerprint).

Link to the service
eduMFA Logo

Why MFA?

  • Improved protection of sensitive data: Universities store a large amount of personal and scientific data (personal, research data, academic work) that must be protected from unauthorized access.
    Many services that work with such data are protected either by the ZIMT access data or the VPN.
  • Commitment to secure IT infrastructure: The Cybersecurity Agreement (VzC) requires universities to operate their IT infrastructures in accordance with current security standards and to protect their members. Specifically, the introduction of MFA is required.

  • Protection against cyber attacks: Attacks on university systems are on the rise and can cause enormous damage. Many security measures can be implemented without user intervention. With VPN and MFA, however, we are dependent on the cooperation of the university.

     

How does MFA work?

Types of second factors:

  • TOTP, time-based one-time password (e.g. 603218)
    • Is only valid for 30 or 60 seconds
    • Can be provided by a mobile device (e.g. smartphone)
    • Requires authenticator app of choice
  • Physical key (a type of USB stick, e.g. YubiKey)
    • Access is only granted to those who have the key
    • USB device with touch surface (no fingerprint!)
  • TAN list (40 6-digit numbers):
    • Not for regular operation, but emergency access
    • A requested TAN must be entered
  • Push notification
    • Requires the "eduMFA Authenticator" app

    • A pop-up is displayed to accept or reject the access

       

About eduMFA

eduMFA offers effective protection against hacker attacks for IT services in academic networks and beyond through the use of multi-factor authentication. This approach provides a high level of protection against phishing attacks, enables synchronization between compatible devices and ensures a smooth user experience without compromising security.

eduMFA is already in use at several universities in Europe. The system is continually evolving to meet the changing needs of the academic and wider IT community. The commitment to using up-to-date software ensures that users always have access to the latest security features and enhancements.

Key features and objectives

  • Support for multi-factor authentication for enhanced security
  • Deep integration with Shibboleth for academic and research environments
  • Continuous development based on the requirements of the scientific community
  • eduMFA Authenticator App for push notifications

Everything at a glance

  • Icon Nachricht

    Form of service
    Personal advice and online advice

  • Icon Globus

    Languages offered
    German, English

  • Icon Tag

    Topic(s)
    2FA, eduMFA, IT security, IT support, MFA, multi-factor authentication

     

links

Link to the service

 

close up employee using microphone

ZIMT Support Desk

The central point of contact for using ZIMT services.

Mail to ZIMT-Support Phone: +49 271 740-4777