MFA Multifactor authentication or two-step verification as it is also called means that you use two different verification steps as extra security. After entering the password as the first step, you then need to perform the next step, which can be, for example, answering (pressing #) a machine-dialed call to your mobile phone.
Users unlock cryptographic credentials using simple built-in methods such as fingerprint readers or cameras on their devices, or by using easy-to-use FIDO security keys. Consumers can choose the device that best suits their needs.
FIDO2 cryptographic login information is unique on each site, never leaves the user's device and is never stored on a server. This security model eliminates the risks of phishing, all forms of password theft and replay attacks.
Because FIDO cryptographic keys are unique to each site, they cannot be used to track users on different sites. In addition, biometric data, when used, never leaves the user's device.