A robust authentication method is needed to protect online user accounts and data from cyber-attacks. Using only passwords is insufficient because they can be easily stolen or cracked. Multi-factor authentication (MFA) increases security by requiring two or more verification factors from the user before granting access to a resource such as an online account or an application. MFA is essential to a strong identity and access management (IAM) policy. This study evaluates and contrasts several MFA methods for online systems, including Microsoft Authenticator, FIDO2 security keys, SMS, voice calls, and biometrics. We assess these methods based on four criteria: security, usability, cost, and compatibility. We discover that only some MFA methods excel across the board. The best MFA method will depend on the organization's and users' specific needs and preferences. Each MFA method has benefits and drawbacks on its own. Based on our analysis, we do, however, make some general observations and recommendations, such as preferring FIDO2 security keys and certificate-based authentication for high-security scenarios, choosing Microsoft Authenticator and biometrics for high-usability scenarios, and avoiding SMS and voice calls for low-security and low-usability scenarios.

Research on human-computer interaction currently focuses on enhancing system usability by establishing an appropriate user interface (UI) that depends on users’ features. Online users typically have different perceptions of their favored interface design depending on their preferences. Thus, those interface preferences could be utilized to recognize online users’ identities. User authentication is another critical issue that should be considered to improve online security mechanisms without compromising usability. This study investigates the feasibility of using UI preferences as evidence of user identity. The proposed method applies to the design preferences of users dealing with online systems (e.g., e-exam and e-banking). These preferences are closely associated with individual characteristics, whether physical, cognitive, psychological, psychomotor, demographic, or experience based. Many design characteristics could be used in online systems; for example, the e-exam interface design may use features such as the font (size, color, and face), the number of questions per page, background color, questions group, timer type, and sound alert. The feasibility evaluation of this study indicated that 96.8% of research participants have variations in their preferences, and each participant kept 94.5% of their design preferences throughout different sessions.