We're excited to announce that Solid Security is now Multifactor—a transformative evolution that brings together proven security solutions with new, cutting-edge cryptographic innovations to redefine identity control and access management for the post-quantum era.
Our Journey: A Brief History of Solid Security
In 2014, one of Multifactor's co-founders established Solid Security as a boutique cybersecurity consultancy and research lab, operating as Solid, Inc. in Delaware and later as Solid Security, Inc. in Wyoming. From its inception, the team at Solid Security had a well-defined goal: to become research leaders across authentication, authorization, and auditing, the core pillars of identity control and access management (ICAM). The stated mission of the company was to provide “Security at Scale” by building scalable automated solutions to mitigate cybersecurity's most pressing threats.
This vision was particularly prescient given the security landscape at the time: “SIM swapping” attacks were wreaking havoc across the digital ecosystem, with high-profile victims including Twitter CEO Jack Dorsey, cryptocurrency investors, and countless individuals who lost access to their accounts and digital assets. These attacks exposed a fundamental vulnerability in traditional two-factor authentication methods tied to mobile phone numbers.
Pioneering Authentication Research at Solid Security
Responding to these challenges, Solid launched its first mass-market product in 2016: Solid2FA—a virtual phone-based 2FA dashboard and app designed to be convenient, secure, and immune to sim-swapping vulnerabilities due to its early adoption of eSIM technology. Solid2FA provided users with a centralized platform to manage their two-factor authentication needs without relying on vulnerable SMS-based methods. The video below showcases the early design of Solid2FA, highlighting its innovative features and user-friendly design.
As Solid2FA gained traction, Solid Security rapidly scaled its research and development innovation pipeline, with its product portfolio expanding to include Tailspin, an ahead-of-its-time digital watermarking solution using NLP techniques for document leak tracing—years before the advent of large language models. Tailspin allowed organizations to embed imperceptible identifiers in sensitive documents, making leak sources traceable without compromising document usability. Solid also advanced the field of Credential Stuffing Mitigation, with enterprise-grade solutions that eventually scaled to monitor millions of authentication requests daily, blocking automated attack attempts while maintaining seamless access for legitimate users.
As the company conducted this research, it simultaneously developed a large technology and intellectual property portfolio, including dozens of US patents and patent applications. In 2018, Solid Security sold some of its intellectual property to a large tech company (a validation of Solid's innovative approach), while strategically retaining its core technology portfolio—preserving the foundation for what would later become Multifactor.
The Parallel Path: Cryptographic Breakthroughs
In the intervening time, members of the Multifactor team have been working in parallel on revolutionary advancements in open-source cryptography. For example, we pioneered MFKDF (Multi-Factor Key Derivation Function), a groundbreaking approach to key derivation that incorporates multiple authentication factors, creating exponentially better security than traditional password-based methods. This open-source library (available at mfkdf.com) has set new standards for how cryptographic keys can be derived from multiple factors.
Based on the success of MFKDF, we also launched MFCHF (Multi-Factor Credential Hash Function), an innovative credential hash function incorporating multiple authentication factors, providing an asymmetric improvement in brute-force resistance when compared with password hashing alone. MFCHF (available at mfchf.com) addresses fundamental weaknesses in traditional authentication systems based on often insecure user passwords.
Throughout this period, we've built an extensive portfolio of patents and intellectual property in post-quantum cryptography, positioning our team at the forefront of next-generation security solutions.
The Convergence: Introducing Multifactor
In 2025, we've raised a small private investment round to bring these parallel journeys together. Solid Security, MFKDF/MFCHF, and an exciting lineup of new products and solutions are all joining forces to create Multifactor (Multifactor, Inc.)—a comprehensive ICAM powerhouse focused on the future of identity security. The breakthrough cryptographic primitives and theory designed by the teams behind MFKDF and MFCHF are highly complementary to Solid Security's demonstrated expertise in building secure and scalable systems. We're incredibly excited to explore the art of the possible when combining innovative post-quantum cryptography with secure, scalable cybersecurity system design fundamentals.
Our Vision for Multifactor
Multifactor represents more than just a rebrand—it's a strategic unification of proven technologies and forward-thinking security approaches. At our core, we're building solutions designed to withstand the cryptographic challenges of the quantum computing era, ensuring your security investments remain future-proof while our comprehensive approach to identity control and access management embraces zero-trust principles at every level, eliminating implicit trust and continuously validating every access request. We've succeeded when all of the security properties demanded by our customers are enforced purely cryptographically, without assumptions about the security of the underlying hardware or software systems.
As part of this evolution, we're bringing Solid Security's most successful products—including Solid2FA and Tailspin—under the Multifactor umbrella with enhanced capabilities and tighter integration. Simultaneously, we remain committed to open-source innovation, with MFKDF and MFCHF being revamped as MFKDF2 and MFCHF2—ensuring they remain publicly available while benefiting from the expanded resources and unified vision that Multifactor provides.
What This Means for the Community
With this announcement, we're revamping this Multifactor blog, which subsumes the Solid Security blog and MFKDF/MFCHF newsrooms. Moving forward, this will serve as our unified platform for sharing insights, updates, and thought leadership in the cybersecurity space.
In the coming weeks and months, we'll be revealing a comprehensive roadmap for our enhanced product lineup, accompanied by technical deep dives into our cryptographic innovations. We'll also provide valuable insights into the evolving threat landscape, helping you stay ahead of emerging security challenges. Additionally, we're excited to announce upcoming opportunities for security professionals and researchers to collaborate with our team, contributing to the next generation of identity and access management solutions.
Join Us on This Journey
As we forge ahead as Multifactor, we remain committed to the same core values that have guided us from the beginning: innovation, security, and user-centricity. We're building a future where robust security enhances rather than impedes the user experience—where multiple factors of authentication combine seamlessly to create impenetrable yet frictionless security systems.
Please stay tuned for more updates, and thank you for being part of our journey.
Related Posts
Why Multifactor is a Public Benefit Corporation
2025-05-19
Multifactor, Inc. is now officially a Public Benefit Corporation (PBC). Learn more about our commitment to improving computer security and privacy for all.
A Fresh Coat of Paint: Introducing Multifactor's New Look
2025-05-09
Multifactor has a new look today across our social media and digital presence. Our redesign stays true to our roots while embracing a more modern aesthetic that better represents the 'multi' part of 'multifactor'.