Strengthening adaptive authentication

Leveraging User Behavior Analytics (UBA) to make dynamic risk assessments in real-time is the most effective way of strengthening security without sacrificing usability.

  • Monday, 3rd April 2017 Posted 7 years ago in by Phil Alsop
OneLogin, the identity management provider bringing speed and integrity to the modern enterprise, has introduced adaptive multi-factor authentication powered by machine learning, as well as usability improvements to its mobile one-time password solution, OneLogin OTP. These new capabilities detect security risks that simplistic multi factor authentication (MFA) solutions miss, while improving productivity for legitimate users.
 
The number of authentication factors required by a user in a given situation is a balance between security and usability. When risk is high, OneLogin prompts the user to authenticate with multiple factors; when low, don’t.
 
OneLogin’s adaptive authentication uses machine learning to build a risk profile based on that tracks a user’s movement across networks, devices, browsers, geographies, building a user profile over time against which new login attempts and password resets can be scored by risk. Some of the factors included in the scoring are IP reputation, device fingerprinting and geo location. At the time of authentication these factors are scored against the user’s profile and the number of required authentication factors are adjusted accordingly.
 
Adaptive authentication is available today at $3 per user per month and works with both OneLogin and other third-party authentication vendors integrated with OneLogin.
 
To further reduce friction related to multi-factor authentication, OneLogin OTP has been improved in two areas. Users can now self-register their mobile app by simple scanning a QR code with their camera, which makes the process quick and reliable. In situations where the user needs to provide a second authentication, the user no longer needs to manually launch the OTP app and send a code. Instead, a push notification is sent to the user’s smartphone and the user can simply click to verify their intent to sign in.
 
“We are beefing up our multi-factor authentication because customers are telling us they want to consolidate on fewer security vendors”, said Thomas Pedersen, CEO of OneLogin. “Customers want less complexity, tighter integration, increased usability and lower cost.”