Identifying users with behavioral biometrics
As we're regularly being told, passwords on their own are no longer sufficient to ensure our security. Businesses are therefore on the lookout for new ways to identify users without making the sign in process overly complicated.
Adaptive authentication specialist SecureAuth is launching the latest version of its product that includes behavioral biometrics, a new risk analysis technology that performs keystroke analysis and mouse movement analysis to determine a user's legitimacy and build a completely unique behavior-based profile on each user device.
These profiles are compared to subsequent login attempts and if they don't match, SecureAuth IdP v9.0 will ask for multi-factor authentication (MFA) for that login to proceed. SecureAuth is the first identity management vendor to offer this capability as part of a comprehensive risk-based authentication process.
"Think of SecureAuth IdP as a bullet proof vest," says Craig Lund, SecureAuth's CEO. "It has multiple layers of protection, which creates a strong bulwark against cyber attacks. It’s harder to break through multiple layers of authentication compared to just one. In this case, one of those layers is created by behavioral biometric technology, which is unique in that it is influenced by social and psychological attributes. This makes it nearly impossible to copy or imitate somebody else’s behavior when using a device".
As well as using behavioral biometric technology to determine risk, SecureAuth IdP also uses device recognition, IP reputation, directory lookup, geo-location and geo-velocity. Features include a tailored login process so that organizations can adjust security requirements for different groups of users.
IdP only requires multifactor authentication when it detects that risk factors are present -- such as a mismatched behavioral profile. It offers more than 20 authentication methods ranging from SMS, telephony, and e-mail one-time passwords to push notifications, so an appropriate method can be matched with each use.
SecureAuth IdP will be on display at the RSA Conference in San Francisco next week or you can learn more on the company's website.
Photo Credit: JMiks/Shutterstock