|
What Makes FortiLock Different from MFA?
You’re right that FortiLock has some similarities to MFA (Multi-Factor Authentication), especially with the PinK system, where a code is sent to your email. However, the big difference with FortiLock is the way your password is stored and verified. In a traditional system, your entire password (hashed) is stored on one server. If that server gets hacked, the attacker can get the entire hashed password and might eventually crack it, especially if the password is weak. FortiLock takes a different approach by splitting the password across multiple servers: Server A stores the first part of your password (say, the first 5 characters).
Server B stores the second part of your password (the rest of it).
Server C handles your email and something called a levelpoint, which links everything together.
Why Splitting the Password Matters:
Think of it like this: Imagine you wrote half of your password on a piece of paper and locked it in one safe (Server A), and the other half in a different safe (Server B). To get the full password, someone would need to break into both safes. Even if they get into one safe, the half password is useless without the other part. In traditional systems, there’s only one safe to protect, but in FortiLock, there are two separate safes (servers) to crack, making it much harder. Can It Be Hacked if Someone Gets the Email Code?
The short answer is: It’s very difficult, because they wouldn’t just need your email code (the PinK code). Even if a hacker somehow got that code, they would still need: Access to both servers that store your split password parts.
The correct levelpoint from Server C to tie it all together.
So even with the email code, without those other parts, the hacker is stuck. Why Splitting Helps (In Simple Terms):
Think of your password like a puzzle. If you only have half the pieces, the puzzle is useless.
In traditional systems, the hacker can break into one server and steal the whole puzzle.
In FortiLock, the puzzle is split into two separate places. So even if the hacker breaks into one place, they don’t have enough pieces to do anything with it.
To Sum It Up:
FortiLock isn’t just like MFA—it’s about making it much harder for hackers to get to your password in the first place, by splitting it and spreading it out across multiple places.
Even if someone gets your email code, they still don’t have enough pieces of the puzzle to break in. |