SlideShare a Scribd company logo

How to Stop Cyber Attacks Using Adaptive Authentication

SecureAuth, profile picture
SecureAuth

The document discusses the topic of adaptive authentication as a critical measure to counter cyber attacks, highlighting the inadequacy of traditional security methods like passwords and two-factor authentication. It outlines various identity-relevant data factors that can enhance trust in user identities, such as device recognition, IP reputation, and behavioral biometrics. Ultimately, it emphasizes the importance of layered adaptive authentication techniques to improve security while maintaining user experience.

Software
Related topics:
Information Security Cyber-Security
1 of 23
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
Stop Cyber Attackers in Their Tracks with Adaptive Authentication December 1, 2015
2Stop Cyber Attackers in Their Tracks with Adaptive Authentication Today’s Speakers Tim Arvanites Vice President, Technical Services SecureAuth Darin Pendergraft Vice President, Marketing SecureAuth
3Stop Cyber Attackers in Their Tracks with Adaptive Authentication WebEx Housekeeping + All attendee audio lines are muted + Submit questions via Q&A panel at any time + Questions will be answered during Q&A at the end of the presentation + Slides and recording will be sent later this week + Contact us at webinars@secureauth.com
4Stop Cyber Attackers in Their Tracks with Adaptive Authentication Agenda + Today’s Reality + The Alternative + Adaptive Authentication in SecureAuth™ IdP Demo + Q & A
5Stop Cyber Attackers in Their Tracks with Adaptive Authentication
6Stop Cyber Attackers in Their Tracks with Adaptive Authentication The reality is…. + Preventative measures are failing + We’re never going to totally stop an attack – There are humans involved (on both sides) – The battlefield is asymmetric + Passwords are no longer good enough + There is hope!
7Stop Cyber Attackers in Their Tracks with Adaptive Authentication Lets Examine an Attack
8Stop Cyber Attackers in Their Tracks with Adaptive Authentication Tighter security has a price + Consumerization of IT – Our users demand less “friction” – BYOD means all kinds of devices must get access – Mix of business and personal apps + Is Two-Factor the Best We’ve Got? – Better than passwords alone – Requires the user to do something – Hardware tokens can be lost or stolen
So what’s the alternative?
10Stop Cyber Attackers in Their Tracks with Adaptive Authentication Adaptive Authentication + Using an open-ended variety of identity-relevant data to incrementally elevate the trust in a claimed identity* + When layered together, they’re powerful *Gartner - A Taxonomy of User Authentication Methods, April 2014 – Device Recognition – IP Reputation Data – Identity Store Lookup – Geo-Location – Geo-Velocity – Behavioral Biometrics
11Stop Cyber Attackers in Their Tracks with Adaptive Authentication Device Recognition + First time authentication: register the endpoint device + Subsequent authentications: validate the endpoint device + Device recognition can include: – web browser configuration – device IP address – language – screen resolution – installed fonts – browser cookies settings – browser plugin – time zone
12Stop Cyber Attackers in Their Tracks with Adaptive Authentication IP Reputation Data
13Stop Cyber Attackers in Their Tracks with Adaptive Authentication Identity Store Lookup + Compare and filter based on information in the store + Can be based on any attribute of the user
14Stop Cyber Attackers in Their Tracks with Adaptive Authentication Geo-Location + Compare the users current geographic location against good or bad locations
15Stop Cyber Attackers in Their Tracks with Adaptive Authentication Geo-Velocity + Compare current location and login history to determine whether an improbable travel event has occurred
16Stop Cyber Attackers in Their Tracks with Adaptive Authentication + Analyze behavior that can be used to verify a person + Gather & store characteristics about the way the user interacts with a device such as: – Keystroke dynamics – Mouse movements – Gesture patterns – Motion patterns Behavioral Biometrics
17Stop Cyber Attackers in Their Tracks with Adaptive Authentication Putting it all together
SecureAuth™ IdP Live Demo
19Stop Cyber Attackers in Their Tracks with Adaptive Authentication Why SecureAuth™ IdP? Two-factor, adaptive authentication and SSO in one solution
20Stop Cyber Attackers in Their Tracks with Adaptive Authentication There is hope + Adaptive authentication: an emerging trend in authentication technology + Adaptive authentication techniques are most powerful when layered together + You can achieve: – Greater analysis and control of authentication – Balance between security and a better user experience + Preventative methods are failing, but you can tighten the net around attackers
Q&A
Find out more about Adaptive Authentication at www.secureauth.com/Product/Adaptive-Authentication.aspx
The intellectual content within this document is the property of SecureAuth and must not be shared without prior consent.

More Related Content

PDF
How to Automate User Provisioning
OneLogin
 
PPTX
Cazando Cibercriminales con: OSINT + Cloud Computing + Big Data
Chema Alonso
 
PDF
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
PDF
Conf 2019 - Workshop: Liam Glanfield - know your threat actor
TechExeter
 
PPTX
Information technology Vs Information security
S Periyakaruppan CISM,ISO31000,C-EH,ITILF
 
PPT
Identity-Defined Privacay & Security for Internet of Things
Ping Identity
 
PPTX
Identity Access Management 101
OneLogin
 
PDF
Clear and Present Danger
Ping Identity
 
How to Automate User Provisioning
OneLogin
 
Cazando Cibercriminales con: OSINT + Cloud Computing + Big Data
Chema Alonso
 
Identity Live Sydney: Intelligent Authentication
ForgeRock
 
Conf 2019 - Workshop: Liam Glanfield - know your threat actor
TechExeter
 
Information technology Vs Information security
S Periyakaruppan CISM,ISO31000,C-EH,ITILF
 
Identity-Defined Privacay & Security for Internet of Things
Ping Identity
 
Identity Access Management 101
OneLogin
 
Clear and Present Danger
Ping Identity
 

What's hot (20)

PPTX
Kent King - PKI: Do You Know Your Exposure?
centralohioissa
 
PPTX
Managing Identity without Boundaries
Ping Identity
 
PPTX
Two factor authentication 2018
Will Adams
 
PPTX
How To Prevent Cyber Attacks | Types of Cyber Attack | What is Cyber Attack |...
Intellipaat
 
PPTX
Cryptography Tutorial
Intellipaat
 
PDF
Securing Apps and Data in the Cloud and On-Premises with OneLogin and Duo Sec...
OneLogin
 
PDF
Dorking & Pentesting with Tacyt
Chema Alonso
 
PDF
Security for Human Beings
zekivazquez
 
PDF
Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...
Emrah Alpa, CISSP CEH CCSK
 
PDF
How to Take Cloud Access Control to the Next Level
OneLogin
 
PPTX
Multifactor Authentication
Ronnie Isherwood
 
PPTX
Seminar-Two Factor Authentication
Dilip Kr. Jangir
 
PPTX
CyberCamp 2015: Low Hanging Fruit
Chema Alonso
 
PDF
Introduction and a Look at Security Trends
Priyanka Aash
 
PPTX
Webinar: Goodbye RSA. Hello Modern Authentication.
SecureAuth
 
PDF
1. penetration-testing-cyber51
Doree Garcia, CCNA, OSWP
 
PDF
Mobile App Security Predictions 2019
NowSecure
 
PPTX
Two Factor Authentication
Nikhil Shaw
 
PPTX
Current trends in information security โดย ผศ.ดร.ปราโมทย์ กั่วเจริญ
BAINIDA
 
PPTX
Multi-Factor Authentication - "Moving Towards the Enterprise"
mycroftinc
 
Kent King - PKI: Do You Know Your Exposure?
centralohioissa
 
Managing Identity without Boundaries
Ping Identity
 
Two factor authentication 2018
Will Adams
 
How To Prevent Cyber Attacks | Types of Cyber Attack | What is Cyber Attack |...
Intellipaat
 
Cryptography Tutorial
Intellipaat
 
Securing Apps and Data in the Cloud and On-Premises with OneLogin and Duo Sec...
OneLogin
 
Dorking & Pentesting with Tacyt
Chema Alonso
 
Security for Human Beings
zekivazquez
 
Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...
Emrah Alpa, CISSP CEH CCSK
 
How to Take Cloud Access Control to the Next Level
OneLogin
 
Multifactor Authentication
Ronnie Isherwood
 
Seminar-Two Factor Authentication
Dilip Kr. Jangir
 
CyberCamp 2015: Low Hanging Fruit
Chema Alonso
 
Introduction and a Look at Security Trends
Priyanka Aash
 
Webinar: Goodbye RSA. Hello Modern Authentication.
SecureAuth
 
1. penetration-testing-cyber51
Doree Garcia, CCNA, OSWP
 
Mobile App Security Predictions 2019
NowSecure
 
Two Factor Authentication
Nikhil Shaw
 
Current trends in information security โดย ผศ.ดร.ปราโมทย์ กั่วเจริญ
BAINIDA
 
Multi-Factor Authentication - "Moving Towards the Enterprise"
mycroftinc
 
Ad

Similar to How to Stop Cyber Attacks Using Adaptive Authentication (20)

PDF
Protecting the Keys to the Kingdom - The Case for Adaptive Authentication for...
SecureAuth
 
PPTX
Stopping Breaches at the Perimeter: Strategies for Secure Access Control
SecureAuth
 
PPTX
A CISO's Guide to Cyber Liability Insurance
SecureAuth
 
PPTX
AY - Adaptive Access Control
Adrian Young
 
PPTX
PCI DSS Simplified: What You Need to Know
AlienVault
 
PPTX
DevSecCon London 2018: How to fit threat modelling into agile development: sl...
DevSecCon
 
PDF
Securing the Software Defined Car™ Using Artificial Intelligence and OTA Updates
Mahbubul Alam
 
PDF
New challenges to secure the IoT (with notes)
Caston Thomas
 
PPTX
What's New in IdP 9.0 Behavioral Biometrics and more…
SecureAuth
 
PDF
datasheet-quickheal-total-securitypdf...
QUICK HEAL TECHNOLOGIES LIMITED
 
PPTX
Good Guys vs Bad Guys: Using Big Data to Counteract Advanced Threats
Zivaro Inc
 
PDF
Axxera Security Solutions Ver 2.0
Reddy Marri
 
PDF
Security Breakout Session
Splunk
 
PPTX
Allianz Global CISO october-2015-draft
Eoin Keary
 
PPTX
Fortify technology
Imad Nom de famille
 
PDF
Understanding Identity Management and Security.
Chinatu Uzuegbu
 
PDF
Improving Mobile Authentication for Public Safety and First Responders
Priyanka Aash
 
PDF
Protect Your Infrastructure: Basics of Cloud Security | Fpwebinar
Fpweb
 
PPTX
"IoT Security - Make vs Buy?" - IoT Data Analytics & Visualization Summit 2016
Verimatrix
 
PDF
Intelligent Authentication
CA Technologies
 
Protecting the Keys to the Kingdom - The Case for Adaptive Authentication for...
SecureAuth
 
Stopping Breaches at the Perimeter: Strategies for Secure Access Control
SecureAuth
 
A CISO's Guide to Cyber Liability Insurance
SecureAuth
 
AY - Adaptive Access Control
Adrian Young
 
PCI DSS Simplified: What You Need to Know
AlienVault
 
DevSecCon London 2018: How to fit threat modelling into agile development: sl...
DevSecCon
 
Securing the Software Defined Car™ Using Artificial Intelligence and OTA Updates
Mahbubul Alam
 
New challenges to secure the IoT (with notes)
Caston Thomas
 
What's New in IdP 9.0 Behavioral Biometrics and more…
SecureAuth
 
datasheet-quickheal-total-securitypdf...
QUICK HEAL TECHNOLOGIES LIMITED
 
Good Guys vs Bad Guys: Using Big Data to Counteract Advanced Threats
Zivaro Inc
 
Axxera Security Solutions Ver 2.0
Reddy Marri
 
Security Breakout Session
Splunk
 
Allianz Global CISO october-2015-draft
Eoin Keary
 
Fortify technology
Imad Nom de famille
 
Understanding Identity Management and Security.
Chinatu Uzuegbu
 
Improving Mobile Authentication for Public Safety and First Responders
Priyanka Aash
 
Protect Your Infrastructure: Basics of Cloud Security | Fpwebinar
Fpweb
 
"IoT Security - Make vs Buy?" - IoT Data Analytics & Visualization Summit 2016
Verimatrix
 
Intelligent Authentication
CA Technologies
 
Ad

More from SecureAuth (19)

PPTX
The Death of 2FA and the Birth of Modern Authentication
SecureAuth
 
PPT
Portal Protection Using Adaptive Authentication
SecureAuth
 
PPTX
SecureAuth Solution Enhancements in 2017
SecureAuth
 
PDF
Passwordless is Possible - How to Remove Passwords and Improve Security
SecureAuth
 
PDF
Top 5 Reasons to Choose Adaptive SSO
SecureAuth
 
PPTX
Webinar: Beyond Two-Factor: Secure Access Control for Office 365
SecureAuth
 
PDF
What's New in SecureAuth IdP in 2017
SecureAuth
 
PPTX
2017 Predictions: Identity and Security
SecureAuth
 
PPTX
Why Two-Factor Isn't Enough
SecureAuth
 
PDF
SecureAuth & 451 Research Webinar: Connected Security - A Holistic Approach t...
SecureAuth
 
PPTX
The Rise of California Cybercrime
SecureAuth
 
PPTX
Unmask anonymous attackers with advanced threat intelligence webinar 6.29 fin...
SecureAuth
 
PPTX
What’s New In SecureAuth™ IdP, 8.2
SecureAuth
 
PPTX
What to Expect in 2016: Top 5 Predictions for Security and Access Control
SecureAuth
 
PPTX
Balancing User Experience with Secure Access Control in Healthcare
SecureAuth
 
PDF
Advanced Authentication: Past, Present, and Future
SecureAuth
 
PPTX
The Future of Mobile Application Security
SecureAuth
 
PPTX
Modern Architectures
SecureAuth
 
PPTX
SecureAuth & TeleSign Webinar: Secure Customers are Profitable Customers
SecureAuth
 
The Death of 2FA and the Birth of Modern Authentication
SecureAuth
 
Portal Protection Using Adaptive Authentication
SecureAuth
 
SecureAuth Solution Enhancements in 2017
SecureAuth
 
Passwordless is Possible - How to Remove Passwords and Improve Security
SecureAuth
 
Top 5 Reasons to Choose Adaptive SSO
SecureAuth
 
Webinar: Beyond Two-Factor: Secure Access Control for Office 365
SecureAuth
 
What's New in SecureAuth IdP in 2017
SecureAuth
 
2017 Predictions: Identity and Security
SecureAuth
 
Why Two-Factor Isn't Enough
SecureAuth
 
SecureAuth & 451 Research Webinar: Connected Security - A Holistic Approach t...
SecureAuth
 
The Rise of California Cybercrime
SecureAuth
 
Unmask anonymous attackers with advanced threat intelligence webinar 6.29 fin...
SecureAuth
 
What’s New In SecureAuth™ IdP, 8.2
SecureAuth
 
What to Expect in 2016: Top 5 Predictions for Security and Access Control
SecureAuth
 
Balancing User Experience with Secure Access Control in Healthcare
SecureAuth
 
Advanced Authentication: Past, Present, and Future
SecureAuth
 
The Future of Mobile Application Security
SecureAuth
 
Modern Architectures
SecureAuth
 
SecureAuth & TeleSign Webinar: Secure Customers are Profitable Customers
SecureAuth
 

Recently uploaded (20)

PPTX
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
PDF
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
PPTX
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
PDF
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
PDF
AI in Product Development-omnex systems
omnex systems
 
PDF
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
PPTX
Introduction to Artificial Intelligence
lohedi9363
 
PPTX
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
PDF
System and Network Administraation Chapter 3
jaramharo
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PDF
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
PDF
medical staffing services at VALiNTRY
Tiyan Grayson
 
PDF
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
PPTX
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
PDF
top salesforce developer skills in 2025.pdf
CloudMetic
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
AI in Product Development-omnex systems
omnex systems
 
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
Introduction to Artificial Intelligence
lohedi9363
 
Odoo POS Development Services by CandidRoot Solutions
CandidRoot Solutions Private Limited
 
System and Network Administraation Chapter 3
jaramharo
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
medical staffing services at VALiNTRY
Tiyan Grayson
 
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
top salesforce developer skills in 2025.pdf
CloudMetic
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 

How to Stop Cyber Attacks Using Adaptive Authentication

  • 1. Stop Cyber Attackers in Their Tracks with Adaptive Authentication December 1, 2015
  • 2. 2Stop Cyber Attackers in Their Tracks with Adaptive Authentication Today’s Speakers Tim Arvanites Vice President, Technical Services SecureAuth Darin Pendergraft Vice President, Marketing SecureAuth
  • 3. 3Stop Cyber Attackers in Their Tracks with Adaptive Authentication WebEx Housekeeping + All attendee audio lines are muted + Submit questions via Q&A panel at any time + Questions will be answered during Q&A at the end of the presentation + Slides and recording will be sent later this week + Contact us at webinars@secureauth.com
  • 4. 4Stop Cyber Attackers in Their Tracks with Adaptive Authentication Agenda + Today’s Reality + The Alternative + Adaptive Authentication in SecureAuth™ IdP Demo + Q & A
  • 5. 5Stop Cyber Attackers in Their Tracks with Adaptive Authentication
  • 6. 6Stop Cyber Attackers in Their Tracks with Adaptive Authentication The reality is…. + Preventative measures are failing + We’re never going to totally stop an attack – There are humans involved (on both sides) – The battlefield is asymmetric + Passwords are no longer good enough + There is hope!
  • 7. 7Stop Cyber Attackers in Their Tracks with Adaptive Authentication Lets Examine an Attack
  • 8. 8Stop Cyber Attackers in Their Tracks with Adaptive Authentication Tighter security has a price + Consumerization of IT – Our users demand less “friction” – BYOD means all kinds of devices must get access – Mix of business and personal apps + Is Two-Factor the Best We’ve Got? – Better than passwords alone – Requires the user to do something – Hardware tokens can be lost or stolen
  • 9. So what’s the alternative?
  • 10. 10Stop Cyber Attackers in Their Tracks with Adaptive Authentication Adaptive Authentication + Using an open-ended variety of identity-relevant data to incrementally elevate the trust in a claimed identity* + When layered together, they’re powerful *Gartner - A Taxonomy of User Authentication Methods, April 2014 – Device Recognition – IP Reputation Data – Identity Store Lookup – Geo-Location – Geo-Velocity – Behavioral Biometrics
  • 11. 11Stop Cyber Attackers in Their Tracks with Adaptive Authentication Device Recognition + First time authentication: register the endpoint device + Subsequent authentications: validate the endpoint device + Device recognition can include: – web browser configuration – device IP address – language – screen resolution – installed fonts – browser cookies settings – browser plugin – time zone
  • 12. 12Stop Cyber Attackers in Their Tracks with Adaptive Authentication IP Reputation Data
  • 13. 13Stop Cyber Attackers in Their Tracks with Adaptive Authentication Identity Store Lookup + Compare and filter based on information in the store + Can be based on any attribute of the user
  • 14. 14Stop Cyber Attackers in Their Tracks with Adaptive Authentication Geo-Location + Compare the users current geographic location against good or bad locations
  • 15. 15Stop Cyber Attackers in Their Tracks with Adaptive Authentication Geo-Velocity + Compare current location and login history to determine whether an improbable travel event has occurred
  • 16. 16Stop Cyber Attackers in Their Tracks with Adaptive Authentication + Analyze behavior that can be used to verify a person + Gather & store characteristics about the way the user interacts with a device such as: – Keystroke dynamics – Mouse movements – Gesture patterns – Motion patterns Behavioral Biometrics
  • 17. 17Stop Cyber Attackers in Their Tracks with Adaptive Authentication Putting it all together
  • 19. 19Stop Cyber Attackers in Their Tracks with Adaptive Authentication Why SecureAuth™ IdP? Two-factor, adaptive authentication and SSO in one solution
  • 20. 20Stop Cyber Attackers in Their Tracks with Adaptive Authentication There is hope + Adaptive authentication: an emerging trend in authentication technology + Adaptive authentication techniques are most powerful when layered together + You can achieve: – Greater analysis and control of authentication – Balance between security and a better user experience + Preventative methods are failing, but you can tighten the net around attackers
  • 21. Q&A
  • 22. Find out more about Adaptive Authentication at www.secureauth.com/Product/Adaptive-Authentication.aspx
  • 23. The intellectual content within this document is the property of SecureAuth and must not be shared without prior consent.