Account takeover attacks (ATO) occur when an unauthorized person gains access to an account they are not authorized to. One of the common methods of account takeover is to wait for an authorized user to leave their computer unlocked (before a timeout policy takes effect). Once the unauthorized user has taken over, they can disable the screen saver and take their time to do all kinds of damage from purchasing items with someone else's credit card, stealing confidential information, resetting passwords, sending emails as someone else, and more.
Authenticating continuously has major advantages over authenticating just once, especially since the system will lock itself as soon as a user is no longer present - leaving little room for unintended data exposure/theft. Inactivity timeouts are generally used to lock the system after a user leaves, but the system is left vulnerable to account takeover (ATO) and all associated risks.
For any additional questions or concerns regarding proximity settings, computer locking, credential management, or compliance, please contact GateKeeper Enterprise support using the Support Ticket form on https://gkaccess.com/support/ or email email@example.com.
GateKeeper continuous authentication; How to prevent account takeover attack (ATO) using continuous authentication?;