Thales' context-based authentication offers convenient, frictionless strong authentication while maintaining the flexibility and agility to add protection with stronger methods of security in higher risk situations.
Combined with "step-up" authentication, context-based authentication optimizes a layered approach to access security by assessing user login attributes and matching them against pre-defined security policies. When security policies are met, users are granted immediate access. When security policies are not met, users are asked to step up security by providing an additional authentication factor, eliminating the risk of unauthorized access.
A step up second factor could be a PKI token or a one-time passcode received via SMS text message, or generated on a mobile device or hardware token, depending on organizational policies.
Thales' SafeNet Access Management and Authentication Solutions leverage configurable, white-box policy rules to enable granular control over the level of authentication required each time a user logs in to an online resource.
The context engine analyzes a user’s logon attributes based on a set of configurable parameters—including geographical location, IP address, time of day, and device recognition—and generates a context assurance level. If a security policy is met, users are granted access. If a security policy is not met, the user may be asked to step up security by providing an additional authentication factor.
Context-based authentication is currently supported by SafeNet Trusted Access.
SafeNet Trusted Access offers identity-as-a-service, combining the convenience of cloud single sign-on with granular access security. By validating identities, enforcing access policies and applying cloud SSO, organizations can ensure secure, convenient access to numerous cloud applications from one easy-to-navigate console.
"We’re beginning the switch to broad use of multi-factor authentication as an important new safeguard for our employees and our enterprise. Security attacks are unrelenting, and we view MFA as a vital and necessary addition to VUMC’s enterprise cybersecurity program."
- Andrew Hutchinson, Executive Director of Enterprise Cybersecurity, VUMC
SafeNet Trusted Access: SafeNet Trusted Access offers identity-as-a-service, combining the convenience of cloud single sign-on with granular access security. By validating identities, enforcing access policies and applying cloud SSO, organizations can ensure secure, convenient access to numerous cloud applications from one easy-to-navigate console.
SafeNet MobilePASS+ Out-of-Band Push Authentication: Offering frictionless strong authentication to hundreds of applications, including SaaS and VPNs, push authentication on mobile devices lets users authenticate with a single tap of a finger on their mobile device.
GrIDsure Authentication: GrIDsure Authentication is a convenient pattern-based authentication solution that overcomes the weakness of passwords without the need for software to be installed or hardware to be provisioned.
Discover more about SafeNet MobilePASS+, a next generation software token that offers secure one-time passcode (OTP) generation on mobile devices, as well as single-tap push authentication for enhanced user convenience.
Cloud-based applications play a vital role in fulfilling productivity, operational and infrastructure needs in the enterprise. However, the burden of managing users’ multiple cloud identities grows as more cloud apps are used. Each new service added to an organizations’ cloud...