Mise en place d'un Use Case d'Adaptive Authentication avec F5 APM et Insight (Solution Made in e-Xpert Solutions)
1 like199 views
The document discusses adaptive authentication, which assigns a risk score to each authentication based on various factors like IP source and username. It includes three phases: learning user habits, building a model from data, and actively calculating risk scores for each authentication attempt. The main goal is to enhance security against credential theft while minimizing user inconvenience from multi-factor authentication.
Mise en place d'un Use Case d'Adaptive Authentication avec F5 APM et Insight (Solution Made in e-Xpert Solutions)
- 1. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Adaptive Authentication 23.10.2018 1 Kevin GILLIERON Software Engineer Michael MOLHO Senior Security Engineer
- 2. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Agenda de la présentation 23.10.2018 2 • Adaptive Authentication • Insight • Démonstration • Questions
- 3. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Adaptive Authentication 23.10.2018 3
- 4. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Adaptive Authentication • Idée: assigner un score de «risque» à chaque authentification • IP source, pays de connexion, browser utilisé, date de connexion, username …. • Prendre des décisions basées sur ce score : • Restreindre l’accès à certaines ressources • Forcer le 2FA • Bloquer l’accès • Le score combine Machine Learning et Analytics • Objectif : lutter contre le vol de credentials • Limiter la contrainte utilisateur de type MFA 23.10.2018 4
- 5. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Adaptive Authentication • 3 phases : • Learning: le système apprend les habitudes de chaque utilisateur • Basé sur les authentification réussies • IP source, pays de connexion, browser utilisé, date de connexion, username …. • Building: construction du modèle à partir des données récoltées • Active: calcul des scores de risque à chaque authentification • Utilisation du modèle calculé (machine learning + analytics) • Décisions en fonction du score (deny, MFA, …) 23.10.2018 5
- 6. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E e-Xpert Solutions - Insight • Made by e-Xpert Solutions • Core : • Collecte de logs • Indexation • Recherche • Modules • Insight for APM • Adaptative Authentication 23.10.2018 6
- 7. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E e-Xpert Solutions – Insight 23.10.2018 7
- 8. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E e-Xpert Solutions – Insight for APM 23.10.2018 8
- 9. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E e-Xpert Solutions – Insight for APM 23.10.2018 9
- 10. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Insight Adapt Auth Learning 23.10.2018 10
- 11. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E 23.10.2018 11 Insight Adapt Auth Active
- 12. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E 23.10.2018 12 Insight Adapt Auth
- 13. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Démonstration 23.10.2018 13
- 14. V O T R E G U I D E E N S É C U R I T É I N F O R M A T I Q U E Questions 23.10.2018 14