Update references to MFA

[alanna-blinn]

A recent gov client security assessment revealed that we need to be consistently referring to MFA -- not TFA, 2FA, two-factor, and two factor. Handbook should be updated accordingly.

[openprivacy]

Need to be clear that MFA is form of 2FA and TFA without being confusing. And it's not clear that "MFA" is standardized across all agencies, but it is a better general-purpose term.

[mgifford]

So at a minimum changing these pages:

• https://handbook.civicactions.com/en/latest/010-welcome-to-civicactions/training/security-training/
• https://handbook.civicactions.com/en/latest/050-how-we-work/tools/github/#setting-up-your-account
• https://handbook.civicactions.com/en/latest/030-policies/security/
• https://handbook.civicactions.com/en/latest/060-engineering/drupal-site-building/
• https://handbook.civicactions.com/en/latest/100-security/awareness/
• https://handbook.civicactions.com/en/latest/060-engineering/security-compliance/
• https://handbook.civicactions.com/en/latest/100-security/yubikey/macosx/
• https://handbook.civicactions.com/en/latest/100-security/yubikey/linux/
• https://handbook.civicactions.com/en/latest/100-security/yubikey/README/
• https://handbook.civicactions.com/en/latest/020-about-us/culture/

So lets switch to "MFA" but maybe to make it clear in the first instance on each page we should say MFA (TFA/2FA) so that people know what we are talking about. MFA is more general, but 2FA is much more commonly used.