Strengthening adaptive authentication

Leveraging User Behavior Analytics (UBA) to make dynamic risk assessments in real-time is the most effective way of strengthening security without sacrificing usability.

  • 7 years ago Posted in
OneLogin, the identity management provider bringing speed and integrity to the modern enterprise, has introduced adaptive multi-factor authentication powered by machine learning, as well as usability improvements to its mobile one-time password solution, OneLogin OTP. These new capabilities detect security risks that simplistic multi factor authentication (MFA) solutions miss, while improving productivity for legitimate users.
 
The number of authentication factors required by a user in a given situation is a balance between security and usability. When risk is high, OneLogin prompts the user to authenticate with multiple factors; when low, don’t.
 
OneLogin’s adaptive authentication uses machine learning to build a risk profile based on that tracks a user’s movement across networks, devices, browsers, geographies, building a user profile over time against which new login attempts and password resets can be scored by risk. Some of the factors included in the scoring are IP reputation, device fingerprinting and geo location. At the time of authentication these factors are scored against the user’s profile and the number of required authentication factors are adjusted accordingly.
 
Adaptive authentication is available today at $3 per user per month and works with both OneLogin and other third-party authentication vendors integrated with OneLogin.
 
To further reduce friction related to multi-factor authentication, OneLogin OTP has been improved in two areas. Users can now self-register their mobile app by simple scanning a QR code with their camera, which makes the process quick and reliable. In situations where the user needs to provide a second authentication, the user no longer needs to manually launch the OTP app and send a code. Instead, a push notification is sent to the user’s smartphone and the user can simply click to verify their intent to sign in.
 
“We are beefing up our multi-factor authentication because customers are telling us they want to consolidate on fewer security vendors”, said Thomas Pedersen, CEO of OneLogin. “Customers want less complexity, tighter integration, increased usability and lower cost.”
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
Trend Micro has released new research detailing the murky cybercrime supply chain behind much of...
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Research from Avast has found that employees in almost a third (31%) of Small and Medium...
This year, over half of MSPs or their end customers have been attacked by ransomware but only 53%...
Trend Micro has published new research revealing that 90% of IT decision makers claim their...
Cyber consultants call on businesses to act now, or risk budgets shrinking further in ‘real...
State of Industrial Cybersecurity report reveals only 21% of organizations achieved full maturity...