The statement is true because a security token is a physical device used to gain access to an electronically restricted resource. It acts as an additional layer of security, usually by providing a password that changes at regular intervals. It's often used in combination with something the user knows (a password) or something the user is (biometric verification), which are essential components of multifactor authentication (MFA). Multifactor authentication requires at least two different factors to verify a user's identity, thus enhancing security measures.