Multi-factor authentication is an authentication mechanism that requires a user to present at least two of the following three types of credentials when logging into an account:
Something you know, like a password.
Something you have, like a smartcard or a one-time passcode.
Something you are, like your fingerprint.
The Payment Card Industry Data Security Standard (PCI DSS) requires multi-factor authentication for any user who accesses an administrative environment that handles card data. Multi-factor authentication helps keep intruders out by providing an extra layer of security when users require access to environments that contain sensitive information.
Commerce Cloud implements this requirement by ensuring that each internal user enters their username and password, plus a one-time passcode (generated by Oracle Mobile Authenticator) every time they log into the administration interface.
