SecureAuth Corporation, the leader in adaptive authentication, announced today its partnership with BehavioSec, the top provider of behavioral biometric solutions for multi-layered authentication and verification, and an active participant in a DARPA program driving frictionless user authentication research. Under the terms of the agreement, SecureAuth will add to SecureAuth IdP a BehavioSec-developed capability that performs keystroke analysis, mouse movement analysis, and touch based analysis on mobile devices. This will allow SecureAuth customers to add a continuous verification capability to their own web and mobile applications.
An individual’s unique behavioural biometric pattern is influenced by social and psychological means – such as if one is a native speaker of the language they write – making it nearly impossible to copy or imitate somebody else’s behaviour in front of the computer. By incorporating behavioural biometric technology into authentication platforms, organisations further strengthen their defenses against cyber adversaries.
A hypothetical behavioural biometric use case might play out as follows: The owner of an internet banking application adds the capability to spot unauthorised access to a customer’s on-line account by recognising the behavioural biometric interactions of the user while they are typing or moving the mouse. Upon the discovery of any irregular behaviour, the internet banking application will prompt the user for a second factor of authentication. If the user is unable to provide the second factor, they will be prevented from accessing the account any further.
“This is a truly sophisticated technology, in that the end user’s experience is only impacted if their keyboard, mouse, or touch interactions raise a red flag,” said Keith Graham, CTO of SecureAuth. “Combining BehavioSec’s patented approach with SecureAuth’s Adaptive Authentication will further help businesses stay ahead of advanced threats. The marriage of SecureAuth and BehavioSec’s technology provides an unrivalled approach to helping organisations not only better protect themselves, but also provides the means to help them detect human attackers who may have breached their network.
“SecureAuth’s status as a major innovator in the adaptive authentication space, along with its diverse customer base, made the company a natural partner for us,” said Dr. Neil Costigan, CEO of BehavioSec. “Similar to BehavioSec, we know SecureAuth’s end goal is to make businesses more secure and more competitive, but do so in a way that is user friendly and dynamic. This is especially important in today’s increasingly challenging market, as movements to the cloud, mobile devices and an embracement of the Internet of Things mandate more flexibility – not less.”
In November 2015, security leaders from SecureAuth, BehavioSec, and IDC will offer, in several major U.S. cities, exclusive technology previews of the new capability. The previews, featuring conversations about the current state of the industry and how advanced adaptive authentication techniques like behavioural biometrics can help protect an organisation's network, applications and brand, will also include live demonstrations of the solution. More information about the previews, "Next Generation Adaptive Authentication using Behavioural Analysis", may be found online.
The new feature is officially slated for inclusion in SecureAuth IdP 9.0, which is targeted for release in early 2016.