Dynamic layers of protection

RSA Adaptive Authentication is engineered to allow organizations to dynamically tailor authentication schemes according to the risk associated with specific activities or the preferences of specific customers. The integrated solution is designed to allow for transparent risk-based authentication for the majority of users, coupled with one-time password-based authentication for groups of higher-risk or security-sensitive customers. The offering also includes optional digital watermarks for reverse authentication and back-end transaction monitoring.

"Today, RSA Security is proud to unveil a solution that uniquely addresses the full continuum of financial institutions' authentication needs: the combination of risk-based and one-time password-based authentication - and a broad range of form factors for two-factor authentication - are available from a single source rather than via a hodgepodge of partnerships," said Chris Young, senior vice president and general manager of RSA Cyota Consumer Solutions. "Moreover, RSA Adaptive Authentication is live and proven today, with its modules already deployed and protecting consumers at many of the world's leading financial institutions."

As part of the integration, RSA Security has added an innovative feature that is engineered to allow financial institutions to seamlessly shift between authentication methods and change the segmentation of their users by leveraging the sophisticated profiling analytics of the product. Risk Profiles Reports, automatically generated by the RSA Cyota risk engine, identify and recommend which customers may be suited to stronger forms of authentication based on their usage and behavior patterns. For example, an end-user who regularly logs in at an Internet cafe and may be using shared computers known to be compromised by fraudsters would be flagged as a user who might want the extra protection of a one-time password token.

Strong intelligence, analytics, and experience at the core

RSA Adaptive Authentication offers unparalleled intelligence-gathering and risk analysis capabilities at its foundation.

Live, and monitoring fraudster activity across dozens of financial institutions around the world today, the proprietary RSA Cyota eFraudNetwork community anchors RSA Adaptive Authentication by aggregating real-time data on the latest attacks and threats. The network collates some of the best, most up-to-date intelligence from across the globe, giving banks instantaneous information and instantaneous protection. The intelligence of one benefits all.

Data from the eFraudNetwork community is also fed into the RSA Cyota risk engine to ensure that authentication decisions are being made according to up-to-date global intelligence. The self-learning risk engine decides -- based on real-time analysis of Internet data, device recognition, user behavioral profiling, and more -- which transactions can proceed uninterrupted and which require additional authentication.

Real-time authentication options ready for any and every fight

Because one size does not fit all when it comes to authentication, RSA Adaptive Authentication provides financial institutions and their end-users with the widest range of authentication methods and form-factor choices.

For end-users that prefer risk-based authentication working for them behind the scenes, RSA Security offers secret 'life questions' and out-of-band phone calls for when a risk-sensitive transaction requires additional authentication. For those groups of end-users that want or require more tangible protection, RSA SecurID® technology is available in a wide range of everyday devices to generate one-time passwords: key-fob tokens, cell phones, PDAs, smart cards, etc. Financial institutions can now get flexible, convenient protection against current and evolving online threats and protect their customers' identities and assets across a variety of risk, regulatory, and transaction scenarios.

"Consumers' needs, lifestyles and habits come in all shapes and sizes," said Avivah Litan, Research VP, Gartner, Inc. "For a majority of users to take advantage of stronger forms of account protection, that protection must be available in a range of flexible choices. In this space, one size does not fit all, and different scenarios and preferences must be matched to appropriate levels of security and convenience."

"RSA Adaptive Authentication essentially ushers in the third stage of authentication's evolution at a critical time, when financial institutions are facing increasing online threats and regulatory requirements," continued Mr. Young. "RSA Security created the concept of one-time-passwords more than 20 years ago, and Cyota invented the notion of risk-based authentication three years ago; today, RSA Security is integrating the two in order to deliver the choice and flexibility financial institutions need to effectively meet their account holders' needs and preferences. Moreover, RSA Security can give financial institutions a complete solution under one relationship, one contract, and one streamlined deployment."

RSA Adaptive Authentication is available both through an on-premise or a fully-hosted solution. The fully-hosted solution leverages RSA Security's Go ID Network when deploying one-time password module-based authentication. The Go ID Network is designed to allow consumers to use the same one-time password credential across multiple online accounts, negating the burden on consumers to carry more than one token and without requiring trust relationships between account providers - as a federated identity model would. The Go ID Network is also designed to support the entire end-user lifecycle - from consumer acquisition marketing guides and inventory management to fulfillment and world-class customer service.