• Products
  • Overview
  • SafeGuard OOB Phone Authentication
  • AQA System
  • easyNotification System
  • SafeGuard RBA System
  • SafeGuard Enterprise Plug-in
  • SafeGuard Suspicious Transaction Monitoring
  • Contact Center Custom Software and Applications
  •  

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

    Home > Products > SafeGuard RBA System

    SafeGuard RBA System

  • Calculates risk score
  • If score is above a defined risk threshold, the tool can be set to allow it or allow it but alert, or deny a transaction
  • Prompt for step-up authentication with a higher-assurance method
  • Prompt for transaction verification
  • SafeGuard Risk Engine enables an enterprise to evaluate and score risk. It can do so for each online login and transaction. As a result, the solution increases authentication security in real-time for high-risk transactions.

    SafeGuard_RBA

    Risk-based authentication (RBA) is a method of applying varying levels of stringency to the authentication process based on the likelihood that access to a given system could result in its being compromised. As the level of risk increases, the authentication process becomes more comprehensive and restrictive.

    You may have experienced risk-based authentication if you've ever accessed your bank account from another country and were asked to use a step-up authentication such as out-of-band phone authentication.

    figure1

    Risk-based authentication can be categorized as either user-dependent or transaction-dependent. User-dependent RBA processes employ the same authentication for every session initiated by a given user; the exact credentials that the site demands depend on who the user is. In transaction-dependent RBA processes, different authentication levels may be required of a given user in different situations, based on the sensitivity or risk potential of the transaction. 
    Risk-based Authentication (RBA)

    1. Uses a risk assessment based on a range of user and asset attributes, and other contextual information such as:
      1. User information
      2. Device information
      3. Channel (e.g. web, mobile, ABM)
      4. Transaction type
      5. Transaction value
      6. IP GeoLocation (such as country, distance)
    2. Calculates risk score
    3. If score is above a defined risk threshold, the tool can be set to:
      1. allow it or allow it but alert (No user impact, 99% transactions)
      2. deny a transaction
      3. prompt for step-up authentication with a higher-assurance method
      4. prompt for transaction verification