A possession factor is an authentication method based on something the user physically possesses. A hardware authentication token is a small physical device that can generate a secure login code or house digital certificates and is carried by the user to provide a possession factor for authentication. Eye color is a trait, not something possessed. A password is something the user knows, and a mobile app authorization request, while delivered to a device the user possesses, by itself is not considered a possession factor until accepted and is not inherently a physical item.
Learn More
AI Generated Content may display inaccurate information, always double-check anything important.
What exactly is a hardware authentication token?
What are the other factors in multi-factor authentication?
How does a mobile app authorization request fit into multi-factor authentication?