RSA SecurID Access Overview
RSA SecurID Access is a comprehensive multi-factor authentication (MFA) and identity assurance solution designed to protect sensitive data and resources by ensuring that only authorized users gain access. Here’s a detailed look at what the product does and its key features.
What RSA SecurID Access Does
RSA SecurID Access is engineered to provide robust security for both on-premises applications and cloud-based services. It goes beyond traditional two-factor authentication by incorporating advanced technologies such as machine learning, behavioral analytics, and threat intelligence. This solution ensures that users have secure and convenient access to the applications they need, regardless of their location or the device they use.
Key Features and Functionality
Multi-Factor Authentication Methods
RSA SecurID Access offers a wide range of authentication methods to cater to different user needs and risk levels. These include:
- Traditional hardware and software tokens
- Mobile-enabled push notifications
- One-time passwords (OTPs)
- Biometric authentication (fingerprint and face recognition)
- SMS and FIDO tokens
Risk-Based Authentication
The solution uses machine-learning algorithms to analyze various contextual attributes such as user behavior, device security posture, application sensitivity, and location. This risk engine calculates an identity confidence score in real-time, allowing for dynamic and risk-driven access policies. Users with high confidence scores can enjoy a frictionless experience, while those with lower scores may be prompted for additional authentication steps.
Assurance Levels
RSA SecurID Access allows organizations to configure authentication policies based on three assurance levels: Low, Medium, and High. This flexibility ensures that the level of security matches the risk associated with the application or use case, balancing security with convenience.
Advanced Mobile Authentication
The solution supports the migration of users from legacy hardware and software tokens to advanced mobile authentication methods. This includes push notifications and other mobile OTPs, enabling users to access both on-premises and cloud applications using a single authenticator on various mobile platforms.
Pervasive Visibility and Control
RSA SecurID Access provides comprehensive visibility and control over user access. It integrates with a wide range of applications (over 500 cloud-based and on-premises) and ensures continuous security enforcement. The system examines multiple contextual factors to make dynamic, real-time decisions about user access, ensuring that users are who they claim to be.
Core Components
The solution includes several core components:
- Authentication Manager: Available on-premises or in the cloud.
- Cloud Authentication Service: A Software-as-a-Service (SaaS) offering.
- Authentication Methods: A variety of methods including push, biometrics, tokens, SMS, etc.
- Third-Party Integrations: Agents and APIs for seamless integration with other systems.
- Machine Learning Risk Engine: Analyzes user behavior and context to determine risk.
- Reporting and Authentication Logs: Provides detailed logs and reporting for security and compliance purposes.
Conclusion
RSA SecurID Access is a powerful and flexible MFA solution that enhances security while maintaining user convenience. By leveraging advanced technologies like machine learning and behavioral analytics, it offers a robust and adaptive security framework that can be tailored to the specific needs of an organization. This makes it an ideal choice for protecting sensitive assets in both cloud and on-premises environments.