PortalGuard dba PistolStar, Inc., profile picture
Uploaded byPortalGuard dba PistolStar, Inc.
4,840 views

Context Based Authentication

The document presents an overview of PortalGuard's contextual authentication platform, which balances usability and security through a multi-factor authentication approach. It highlights various authentication methods and their adaptability to different access scenarios, emphasizing a proactive approach to reducing threats while enhancing user experience. Technical requirements for installation and configuration details are also provided, ensuring compatibility with various systems.

Embed presentation

Downloaded 110 times
Understanding PortalGuard’s Contextual Authentication: A Multi-factor Approach Highlighting the Multi-factor Authentication Layer of the PortalGuard Platform
By the end of this tutorial you will be able to… • Define PortalGuard • Understand the barriers to increasing security • Discover PortalGuard’s Contextual Authentication (CBA) • See the Step-by-step Authentication Process • Know the Technical Requirements
The PortalGuard software is a Contextual Authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing and compliance for your web, desktop and mobile applications. Usability Security • Single Sign-on • Knowledge-based • Password Management • Two-factor Authentication • Password Synchronization • Contextual Authentication • Self-service Password Reset • Real-time Reports/Alerts
Before going into the details… • Configurable by user, group or application • Stop making assumptions about who is accessing your applications • Adjust the authentication method dynamically with every access request • Gain insight into user access scenarios • Cost effective and competitively priced • Tailored Authentication for an exact fit
Remote Access Security vs. Usability =
Two-factor Authentication for All Users = No Flexibility Although desirable for security the barriers are overwhelming… • Not able to adapt to different access scenarios • Requires dedicated IT resources and hardware • High total cost of ownership • Increased Help Desk calls due to user frustrations
Two-factor Authentication for All Users = No Flexibility Is there a midpoint between passwords and two-factor authentication?
Contextual Authentication is the Midpoint. Apply the appropriate authentication level… • Location Password-based • Time • Device • Network Multi-factor • Application Password-based
• Cost effective • Flexible • Five authentication methods: Password-based Single Sign-on Contextual Authentication (CBA) Two-factor Authentication Knowledge-based • Two-factor authentication options – soft tokens • SAML single sign-on • Real-time activity alerts • Notifications & Reporting
• Increased security – without impacting the user experience • Increase usability for authorized users while creating barriers for unauthorized users • Flexibility - configurable to the user, group or application levels • Lower total cost of ownership than hard token two-factor authentication alternatives • Reduce threats using a proactive approach • Gather Insight – analyze contextual data reports
Authentication Method: • Single sign-on: username and password (single password for multiple systems) • Password-based: username and password • Knowledge-based: username, password and challenge question • One-time Password (OTP): username and OTP • Multi-factor: username, password and OTP or contextual data
Credibility Score: A numeric value that is used to determine the appropriate authentication method based on a set of ranges. Credibility Policy: A configurable policy based on categories and identifiers to which you can assign a score.
Weight: An optional percentage for each category that adjusts the category’s impact on the credibility score versus other categories. Application Realms: Identifies an application and assigns a weight to that application that adjusts the overall credibility score.
HOW IT WORKS
Analysis Mode: Recommended for a 60-90 day period to establish a baseline for the environment.
Client-side Browser Add-on: Optional to collect users contextual data and can be installed silently using a standard MSI.
Step 2: The user begins the login process by entering their username and clicking “Continue”. Step 3: The PortalGuard server identifies the user’s credibility policy and computes the following: • Gross score for each category • Any category weight impact to the score • Net score from the policy and weights • Modification due to sensitivity of requested application
Step 4: Contextual data is sent from the client-side browser add-on to the PortalGuard server. The PortalGuard server looks up the appropriate authentication method using the final credibility score and previously set ranges. PortalGuard enforced the appropriate authentication method for the user’s current access attempt. The user provides the required credentials to successfully complete their access request and login.
Configurable through the PortalGuard Configuration Utility: • Enable or Disable CBA • Assign users or groups to individual credibility policies • Credibility Policy: • Client Type • Use Category Weighting • Enforce Application Realms • Display Scoring UI • Categories • Weight • Identifiers • Credibility Score
Configurable through the PortalGuard Configuration Utility: • Default Ranges: • Start and End Scores • Authentication Types • Alert On or Off
Configurable through the PortalGuard Configuration Utility: • Application Realms
TECHNICAL REQUIREMENTS
A MSI is used to install PortalGuard on IIS 6 or 7.x. This version of PortalGuard supports direct access and authentication to cloud/browser-based applications, only. • IBM WebSphere/WebSphere Portal v5.1 or higher • Microsoft IIS 6.0 or higher • Microsoft Windows SharePoint Services 3.0 or higher • Microsoft Office SharePoint Server 2007 or later • .NET 2.0 framework or later must be installed • (64-bit OS only) Microsoft Visual C++ 2005 SP1 Redistributable Package (x64) • Microsoft Windows Server 2000 • Microsoft Windows Server 2003 (32 or 64-bit) • Microsoft Windows Server 2008 (32 or 64-bit) • Microsoft Windows Server 2008 R2
THANK YOU For more information visit PortalGuard.com or Contact Us

More Related Content

PDF
Contextual Authentication
byPortalGuard dba PistolStar, Inc.
 
PDF
Contextual Authentication: A Multi-factor Approach
byPortalGuard
 
PPTX
Access management
byVenkatesh Jambulingam
 
PPTX
Identity Management
byVenkatesh Jambulingam
 
PDF
Pg 2 fa_tech_brief
byHai Nguyen
 
DOC
test
bypixeldemo
 
PDF
Sp 29 two_factor_auth_guide
byHai Nguyen
 
PDF
Session 7 e_raja_kailar
byHai Nguyen
 
Contextual Authentication
byPortalGuard dba PistolStar, Inc.
 
Contextual Authentication: A Multi-factor Approach
byPortalGuard
 
Access management
byVenkatesh Jambulingam
 
Identity Management
byVenkatesh Jambulingam
 
Pg 2 fa_tech_brief
byHai Nguyen
 
test
bypixeldemo
 
Sp 29 two_factor_auth_guide
byHai Nguyen
 
Session 7 e_raja_kailar
byHai Nguyen
 

What's hot

PDF
International Journal of Engineering Inventions (IJEI)
byInternational Journal of Engineering Inventions www.ijeijournal.com
 
PDF
Security Patterns with the WSO2 ESB
byWSO2
 
PDF
Injection techniques conversys
byKrishnendu Paul
 
PDF
Enterprise Mobile Security for PeopleSoft
byHendrix Bodden
 
PDF
Two factor authentication-in_your_network_e_guide
byNick Owen
 
PPTX
SCWCD : Secure web
byBen Abdallah Helmi
 
PDF
Remote Access and Dual Authentication for Cloud Storage
byIJMER
 
PDF
Security 101: Multi-Factor Authentication for IBM i
byPrecisely
 
PDF
10. grid security
byDr Sandeep Kumar Poonia
 
PDF
Two-factor Authentication
byPortalGuard dba PistolStar, Inc.
 
PPT
SiteMinder
byInformation Technology
 
PPT
Authentication Technologies
byNicholas Davis
 
PDF
Smart software-manager-satellite-enhanced-edition-datasheet
byWattson Alexander Ramírez Rodas
 
PDF
Juniper Enterprise Guest Access
byAltaware, Inc.
 
PDF
76 s201923
byIJRAT
 
PDF
Ca site minder r12 professional study guide
byNitish Nagar
 
International Journal of Engineering Inventions (IJEI)
byInternational Journal of Engineering Inventions www.ijeijournal.com
 
Security Patterns with the WSO2 ESB
byWSO2
 
Injection techniques conversys
byKrishnendu Paul
 
Enterprise Mobile Security for PeopleSoft
byHendrix Bodden
 
Two factor authentication-in_your_network_e_guide
byNick Owen
 
SCWCD : Secure web
byBen Abdallah Helmi
 
Remote Access and Dual Authentication for Cloud Storage
byIJMER
 
Security 101: Multi-Factor Authentication for IBM i
byPrecisely
 
10. grid security
byDr Sandeep Kumar Poonia
 
Two-factor Authentication
byPortalGuard dba PistolStar, Inc.
 
SiteMinder
byInformation Technology
 
Authentication Technologies
byNicholas Davis
 
Smart software-manager-satellite-enhanced-edition-datasheet
byWattson Alexander Ramírez Rodas
 
Juniper Enterprise Guest Access
byAltaware, Inc.
 
76 s201923
byIJRAT
 
Ca site minder r12 professional study guide
byNitish Nagar
 

Viewers also liked

PDF
Digital Platform Selection Best Practices
byedynamic
 
PDF
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
bySAP Portal
 
PPTX
Diarrhea:Myths and facts, Precaution
byWuzna Haroon
 
PDF
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
bythePlatform
 
PPTX
Nt1310 project
byNathan Pennington
 
PDF
Information från Läkemedelsverket #5 2013
byLäkemedelsverket (Medical Products Agency, Sweden)
 
DOC
cathy resume
byCatherine Towery Sales
 
PPT
"15 Business Story Ideas to Jump on Now"
byReynolds Center for Business Journalism
 
PDF
Secure PIN Management How to Issue and Change PINs Securely over the Web
bySafeNet
 
PPTX
Credit cards
byThePointsGuy
 
PDF
Basics of Coding in Pediatrics Medical Billing
byOutsource Strategies International
 
PDF
Energy Strategy Group_Report 2012 efficienza energetica
byEugenio Bacile di Castiglione
 
PDF
Alta White Paper D2C eCommerce Case Study 2016
byPatrick Nicholson
 
Digital Platform Selection Best Practices
byedynamic
 
Enterprise workspaces - Extending SAP NetWeaver Portal capabilities
bySAP Portal
 
Diarrhea:Myths and facts, Precaution
byWuzna Haroon
 
mpx Replay, Expedite Your Catch-Up and C3 Workflow 2 of 2
bythePlatform
 
Nt1310 project
byNathan Pennington
 
Information från Läkemedelsverket #5 2013
byLäkemedelsverket (Medical Products Agency, Sweden)
 
cathy resume
byCatherine Towery Sales
 
"15 Business Story Ideas to Jump on Now"
byReynolds Center for Business Journalism
 
Secure PIN Management How to Issue and Change PINs Securely over the Web
bySafeNet
 
Credit cards
byThePointsGuy
 
Basics of Coding in Pediatrics Medical Billing
byOutsource Strategies International
 
Energy Strategy Group_Report 2012 efficienza energetica
byEugenio Bacile di Castiglione
 
Alta White Paper D2C eCommerce Case Study 2016
byPatrick Nicholson
 

Similar to Context Based Authentication

PDF
QualysGuard InfoDay 2012 - Secure Digital Vault for Qualys
byRisk Analysis Consultants, s.r.o.
 
PPT
1 security goals
bydrewz lin
 
PDF
Two-factor Authentication
byPortalGuard dba PistolStar, Inc.
 
PDF
UNIT 2 Information Security Sharad Institute
bySatishPise4
 
PDF
access-control-week-2
byjemtallon
 
PPTX
009 Authentication and Access Control.pptx
byAssadLeo1
 
PDF
Pay Forum Conference
byhagero
 
PDF
Supplement V1.2
bycissp taiwan
 
PDF
Password Management
byPortalGuard dba PistolStar, Inc.
 
PDF
Class paper final
byAnusha Manchala
 
PDF
Access Control
byWaseem Hamid Hussain
 
PDF
Password management
byPortalGuard dba PistolStar, Inc.
 
PDF
Sms passcode
byTechMeetups
 
PDF
CNIT 125 6. Identity and Access Management
bySam Bowne
 
PDF
5. Identity and Access Management
bySam Bowne
 
PDF
Multi Factor Authentication Whitepaper Arx - Intellect Design
byRajat Jain
 
PDF
IS - User Authentication
byFumikageTokoyami4
 
PDF
CISSP Prep: Ch 6. Identity and Access Management
bySam Bowne
 
PDF
Multi-Factor Authentication & Authorisation
byUbisecure
 
PDF
#MFSummit2016 Secure: Mind the gap strengthening the information security model
byMicro Focus
 
QualysGuard InfoDay 2012 - Secure Digital Vault for Qualys
byRisk Analysis Consultants, s.r.o.
 
1 security goals
bydrewz lin
 
Two-factor Authentication
byPortalGuard dba PistolStar, Inc.
 
UNIT 2 Information Security Sharad Institute
bySatishPise4
 
access-control-week-2
byjemtallon
 
009 Authentication and Access Control.pptx
byAssadLeo1
 
Pay Forum Conference
byhagero
 
Supplement V1.2
bycissp taiwan
 
Password Management
byPortalGuard dba PistolStar, Inc.
 
Class paper final
byAnusha Manchala
 
Access Control
byWaseem Hamid Hussain
 
Password management
byPortalGuard dba PistolStar, Inc.
 
Sms passcode
byTechMeetups
 
CNIT 125 6. Identity and Access Management
bySam Bowne
 
5. Identity and Access Management
bySam Bowne
 
Multi Factor Authentication Whitepaper Arx - Intellect Design
byRajat Jain
 
IS - User Authentication
byFumikageTokoyami4
 
CISSP Prep: Ch 6. Identity and Access Management
bySam Bowne
 
Multi-Factor Authentication & Authorisation
byUbisecure
 
#MFSummit2016 Secure: Mind the gap strengthening the information security model
byMicro Focus
 

More from PortalGuard dba PistolStar, Inc.

PPTX
The Cost and Loss of Not using Single Sign-On with Two-Factor Authentication
byPortalGuard dba PistolStar, Inc.
 
PDF
Self-service Password Reset
byPortalGuard dba PistolStar, Inc.
 
PDF
Password Synchronization
byPortalGuard dba PistolStar, Inc.
 
PDF
Password Synchronization
byPortalGuard dba PistolStar, Inc.
 
PDF
Self-service Password Reset
byPortalGuard dba PistolStar, Inc.
 
PPTX
Make Your Employees More Security Aware
byPortalGuard dba PistolStar, Inc.
 
The Cost and Loss of Not using Single Sign-On with Two-Factor Authentication
byPortalGuard dba PistolStar, Inc.
 
Self-service Password Reset
byPortalGuard dba PistolStar, Inc.
 
Password Synchronization
byPortalGuard dba PistolStar, Inc.
 
Password Synchronization
byPortalGuard dba PistolStar, Inc.
 
Self-service Password Reset
byPortalGuard dba PistolStar, Inc.
 
Make Your Employees More Security Aware
byPortalGuard dba PistolStar, Inc.
 

Recently uploaded

PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PDF
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
PDF
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
PDF
Agentic AI with Google ADK GDG On Campus Netaji Subhash Engineering College
bydscnsecorg
 
PDF
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PPTX
Career-Opportunities in Industrial Arts Grade 8 PPT Lesson 2
byFSBTLEDNathanVince
 
PDF
Track Phone Location via Number (2026)_ What Actually Works, What’s a Scam, a...
byEmily Woods
 
PDF
Adapt.com Seed Fundraising Deck | The AI Computer for Business
byashley459565
 
PDF
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
PDF
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
PDF
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PPTX
2026 SCORM Troubleshooting Rustici + dominKnow.pptx
byRustici Software
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PDF
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
PDF
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
PDF
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
TrustArc Webinar - From Zero to Privacy Hero: Launching Your Program Right an...
byTrustArc
 
ICT500 - CRITICAL AND CREATIVE THINKING FOR INFORMATION TECHNOLOGY SOLUTIONS:...
by2024432452
 
Agentic AI with Google ADK GDG On Campus Netaji Subhash Engineering College
bydscnsecorg
 
Post-Hackathon-Learnings-Maximizing-Impact-Beyond-the-Event.pdf
byishantyadav1111
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
Career-Opportunities in Industrial Arts Grade 8 PPT Lesson 2
byFSBTLEDNathanVince
 
Track Phone Location via Number (2026)_ What Actually Works, What’s a Scam, a...
byEmily Woods
 
Adapt.com Seed Fundraising Deck | The AI Computer for Business
byashley459565
 
OpenCharacter AI Reviews: Features, Plans, and Best Alternative
byOpenCharacter AI
 
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
2026 SCORM Troubleshooting Rustici + dominKnow.pptx
byRustici Software
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 

Context Based Authentication

  • 1.
    Understanding PortalGuard’s Contextual Authentication: A Multi-factor Approach Highlighting the Multi-factor Authentication Layer of the PortalGuard Platform
  • 2.
    By the endof this tutorial you will be able to… • Define PortalGuard • Understand the barriers to increasing security • Discover PortalGuard’s Contextual Authentication (CBA) • See the Step-by-step Authentication Process • Know the Technical Requirements
  • 3.
    The PortalGuard softwareis a Contextual Authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing and compliance for your web, desktop and mobile applications. Usability Security • Single Sign-on • Knowledge-based • Password Management • Two-factor Authentication • Password Synchronization • Contextual Authentication • Self-service Password Reset • Real-time Reports/Alerts
  • 4.
    Before going intothe details… • Configurable by user, group or application • Stop making assumptions about who is accessing your applications • Adjust the authentication method dynamically with every access request • Gain insight into user access scenarios • Cost effective and competitively priced • Tailored Authentication for an exact fit
  • 5.
  • 6.
    Two-factor Authentication forAll Users = No Flexibility Although desirable for security the barriers are overwhelming… • Not able to adapt to different access scenarios • Requires dedicated IT resources and hardware • High total cost of ownership • Increased Help Desk calls due to user frustrations
  • 7.
    Two-factor Authentication forAll Users = No Flexibility Is there a midpoint between passwords and two-factor authentication?
  • 8.
    Contextual Authentication isthe Midpoint. Apply the appropriate authentication level… • Location Password-based • Time • Device • Network Multi-factor • Application Password-based
  • 9.
    • Cost effective • Flexible • Five authentication methods: Password-based Single Sign-on Contextual Authentication (CBA) Two-factor Authentication Knowledge-based • Two-factor authentication options – soft tokens • SAML single sign-on • Real-time activity alerts • Notifications & Reporting
  • 11.
    • Increased security– without impacting the user experience • Increase usability for authorized users while creating barriers for unauthorized users • Flexibility - configurable to the user, group or application levels • Lower total cost of ownership than hard token two-factor authentication alternatives • Reduce threats using a proactive approach • Gather Insight – analyze contextual data reports
  • 12.
    Authentication Method: • Singlesign-on: username and password (single password for multiple systems) • Password-based: username and password • Knowledge-based: username, password and challenge question • One-time Password (OTP): username and OTP • Multi-factor: username, password and OTP or contextual data
  • 13.
    Credibility Score: A numericvalue that is used to determine the appropriate authentication method based on a set of ranges. Credibility Policy: A configurable policy based on categories and identifiers to which you can assign a score.
  • 14.
    Weight: An optional percentagefor each category that adjusts the category’s impact on the credibility score versus other categories. Application Realms: Identifies an application and assigns a weight to that application that adjusts the overall credibility score.
  • 15.
  • 16.
    Analysis Mode: Recommended fora 60-90 day period to establish a baseline for the environment.
  • 17.
    Client-side Browser Add-on: Optionalto collect users contextual data and can be installed silently using a standard MSI.
  • 18.
    Step 2: The user begins the login process by entering their username and clicking “Continue”. Step 3: The PortalGuard server identifies the user’s credibility policy and computes the following: • Gross score for each category • Any category weight impact to the score • Net score from the policy and weights • Modification due to sensitivity of requested application
  • 19.
    Step 4: Contextual datais sent from the client-side browser add-on to the PortalGuard server. The PortalGuard server looks up the appropriate authentication method using the final credibility score and previously set ranges. PortalGuard enforced the appropriate authentication method for the user’s current access attempt. The user provides the required credentials to successfully complete their access request and login.
  • 20.
    Configurable through thePortalGuard Configuration Utility: • Enable or Disable CBA • Assign users or groups to individual credibility policies • Credibility Policy: • Client Type • Use Category Weighting • Enforce Application Realms • Display Scoring UI • Categories • Weight • Identifiers • Credibility Score
  • 21.
    Configurable through thePortalGuard Configuration Utility: • Default Ranges: • Start and End Scores • Authentication Types • Alert On or Off
  • 22.
    Configurable through thePortalGuard Configuration Utility: • Application Realms
  • 23.
  • 24.
    A MSI isused to install PortalGuard on IIS 6 or 7.x. This version of PortalGuard supports direct access and authentication to cloud/browser-based applications, only. • IBM WebSphere/WebSphere Portal v5.1 or higher • Microsoft IIS 6.0 or higher • Microsoft Windows SharePoint Services 3.0 or higher • Microsoft Office SharePoint Server 2007 or later • .NET 2.0 framework or later must be installed • (64-bit OS only) Microsoft Visual C++ 2005 SP1 Redistributable Package (x64) • Microsoft Windows Server 2000 • Microsoft Windows Server 2003 (32 or 64-bit) • Microsoft Windows Server 2008 (32 or 64-bit) • Microsoft Windows Server 2008 R2
  • 25.
    THANK YOU For moreinformation visit PortalGuard.com or Contact Us