Authentication intent explained.
Authentication intent is a specific action required by the user intending to login, and is used to reduce the risks of unintended or malicious login. Examples of requiring authentication intent include typing in an OTP, inserting a USB, scanning a token, pushing a button, and perhaps biometrics. NIST Special Publication 800-63B 5.2.9 defines "authentication intent" as the following:
"An authentication process demonstrates intent if it requires the subject to explicitly respond to each authentication or reauthentication request. The goal of authentication intent is to make it more difficult for directly-connected physical authenticators (e.g., multi-factor cryptographic devices) to be used without the subject’s knowledge, such as by malware on the endpoint. Authentication intent SHALL be established by the authenticator itself, although multi-factor cryptographic devices MAY establish intent by reentry of the other authentication factor on the endpoint with which the authenticator is used."
For any additional questions or concerns regarding proximity settings, computer locking, credential management, or compliance, please contact GateKeeper Enterprise support using the Support Ticket form on https://gkaccess.com/support/ or email support@gkaccess.com.
--------------------------------
How do I login with authentication intent; Authentication intent explanation.; Authentication intent definition.; Authentication intent example.; Authentication intent examples.;
Comments
0 comments
Please sign in to leave a comment.