"Major security breaches have stayed in the headlines in 2014. Even today we're hearing about attackers stealing user credentials to disrupt businesses and governments for financial gain -- it's clear that password-based security is not enough," stated Pete Lindstrom, Research Director, Security Products, at International Data Corporation (IDC) research and advisory firm. "It's imperative for organizations to incorporate more intelligent security measures at the point of user authentication to prevent intrusions, yet it is equally important to balance strong security with the frictionless experience that users demand."
SecureAuth IdP 8.0 risk-based authentication includes four criteria to deliver an accurate threat assessment including: IP address, IP reputation using threat intelligence powered by Norse Corporation's DarkMatter network, group membership and geo-location/geo-velocity. IdP authentication workflows can include all four of these criteria chained together or a subset. At each point of inspection, there are four actions that can be taken: pass, challenge, redirect or fail. To a legitimate user, this analysis is transparent, ensuring that their user experience is preserved.
"SecureAuth IdP 8.0 equips organizations with a process to detect threats and prevent unauthorized access to corporate resources before a security breach occurs," commented Keith Graham, Chief Technology Officer at SecureAuth Corporation. "It seems as if daily there are news reports about yet another company being hacked, user credentials stolen, and personal data compromised. These on-going attacks mean organizations must step up their attempts to block attackers before they can do damage. SecureAuth is working hard to help our customers address their authentication challenges in this ever changing cyber threat landscape"
SecureAuth IdP 8.0 additional features and benefits include:
• A transformation engine that dynamically changes user attributes to meet custom mapping needs, removing the need to store and retain custom attributes in the data store
• Two-factor authentication support for Windows desktops and servers which increases protection for Windows administrative and user accounts.
• Account provisioning and synchronization that eliminates the need to manually manage user data in multiple locations
• A visual configurator that speeds the creation of IdP authentication workflows making deployment even faster