Skip to content
Prueba RSA Cloud Security Gratis

Comienza tu prueba de ID Plus ahora.

Empezar
Secure, convenient accesstranslated

In the security-first financial services sector, multi-factor authentication (MFA) has long been a linchpin of providing access that both maximizes security and minimizes inconvenience to users. Increasingly, forward-thinking banks are looking ahead to an authentication environment that still includes MFA—but also goes beyond it. Their vision is to achieve the goal of secure, convenient access by moving to passwordless authentication.

In that spirit, RSA is helping one of the largest banks in the world lay the foundation for realizing its vision of a fully passwordless future. The organization has adopted RSA® ID Plus, the complete, secure access management that provides a clear path to passwordless authentication, including phishing-resistant capabilities. The bank’s goal in taking this step is to maximize security and convenience for internal users as well as contractors and customers.translated

RSA ID Plus: Building beyond MFA to a passwordless futuretranslated

With the following unique combination of capabilities, RSA is well-positioned to help realize the bank’s long-term vision of authentication without the risk and inconvenience that passwords impose.

  • Provides a comprehensive platform for authentication in transition. As the bank evolves from on-premises to cloud authentication, RSA ID Plus smooths the transition by providing a full range of modern authentication capabilities to meet their needs at every point, with both MFA and passwordless methods, as well as a variety of phishing-resistant, FIDO2-certified hardware authenticators and software authenticators for passwordless environments.
  • Addresses the needs of mobile and non-mobile users. ID Plus meets the authentication needs of all users whether they depend on mobile devices or on-premises methods to authenticate—or both. To implement passwordless securely, it’s vital that banks and other organizations address all users, use cases, and environments, including internal users, external users like contractors and customers, and high-security environments.
  • Works in cloud, hybrid, and on-premises environments. The bank can adopt ID Plus immediately, even while primarily providing on-premises capabilities to authenticate—and simultaneously move toward a hybrid or fully cloud-based deployment on its own terms and timeline. Using ID Plus provides the bank with hybrid failover capabilities for access and authentication, ensuring that users can still login securely even if they can’t connect.

translated

RSA and FIDO2: Joining forces to deliver phishing-resistant passwordless authenticationtranslated

With the following unique combination of capabilities, RSA is well-positioned to help realize the bank’s long-term vision of authentication without the risk and inconvenience that passwords impose.

  • Provides a comprehensive platform for authentication in transition. As the bank evolves from on-premises to cloud authentication, RSA ID Plus smooths the transition by providing a full range of modern authentication capabilities to meet their needs at every point, with both MFA and passwordless methods, as well as a variety of phishing-resistant, FIDO2-certified hardware authenticators and software authenticators for passwordless environments.
  • Addresses the needs of mobile and non-mobile users. ID Plus meets the authentication needs of all users whether they depend on mobile devices or on-premises methods to authenticate—or both. To implement passwordless securely, it’s vital that banks and other organizations address all users, use cases, and environments, including internal users, external users like contractors and customers, and high-security environments.
  • Works in cloud, hybrid, and on-premises environments. The bank can adopt ID Plus immediately, even while primarily providing on-premises capabilities to authenticate—and simultaneously move toward a hybrid or fully cloud-based deployment on its own terms and timeline. Using ID Plus provides the bank with hybrid failover capabilities for access and authentication, ensuring that users can still login securely even if they can’t connect.

translated

FIDO2-certified authenticators: Delivering phishing-resistant passwordless authenticationtranslated

The bank chose ID Plus as its SaaS solution with two primary goals in mind: conducting a broad passwordless initiative, and specifically adopting passwordless methods that provide anti-phishing capabilities. The FIDO2 open authentication standard for replacing passwords with stronger authentication methods is critical to meeting both of these goals.

RSA ID Plus provides FIDO2-based access through its Cloud Authentication Services (CAS) and FIDO2-certified authenticators. To resist phishing, FIDO2 device-bound passkeys are characterized by unique login credentials that are never stored on a server, as well as public-key cryptography that stores credentials in encrypted key combinations. FIDO2 also enables device-bound passkeys that never leave the user’s device, further limiting phishing exposure.

RSA has a long history of collaboration and leadership with the FIDO Alliance, the industry consortium that developed the FIDO2 standard, and has been actively involved in developing and implementing FIDO2 and other FIDO technologies for reducing reliance on passwords.translated

The goal: A phishing-resistant, fully passwordless environment translated

RSA ID Plus supports phishing-resistant, passwordless authenticators, giving the bank a range of choices to meet its authentication needs for internal users, contractors, and customers. RSA phishing-resistant passwordless solutions include:
<ul>
<li><a href="”https://www.rsa.com/resources/blog/products-and-solutions/new-rsa-mobile-passkey-stops-phishing-attacks-with-phishing-resistant-authentication/”"><em>RSA iShield Key 2 Series</em></a> authenticators combine FIDO2, PIV, and HOTP and the FIPS 140-3 certified smart chip technology to provide the highest level of phishing-resistant, passwordless authentication.</li>
<li><a href="”https://www.rsa.com/rsa-ishield-key-2-series/”"><em>RSA Authenticator App</em></a> device-bound passkeys are FIDO2-certified passwordless authentication methods stored only on a single device, which enhances security in general and phishing resistance in particular.</li>
<li><a href="”https://www.rsa.com/resources/datasheets/id-plus-ds100-authenticator/”"><em>RSA DS100 Authenticator</em></a> is also designed for phishing resistance, offering MFA through both FIDO2 passwordless and OTP methods on a single cloud-enabled hardware token.</li>
</ul><span class="”d-none”">translated</span>