Thales background banner

Context-Based & Step-Up Authentication Solutions

Context Based Authentication

Thales' context-based authentication offers convenient, frictionless strong authentication while maintaining the flexibility and agility to add protection with stronger methods of security in higher risk situations.

Combined with "step-up" authentication, context-based authentication optimizes a layered approach to access security by assessing user login attributes and matching them against pre-defined security policies. When security policies are met, users are granted immediate access. When security policies are not met, users are asked to step up security by providing an additional authentication factor, eliminating the risk of unauthorized access.

A step up second factor could be a PKI token or a one-time passcode received via SMS text message, or generated on a mobile device or hardware token, depending on organizational policies.

ami cta

Your Organization is a Target for Cyber Attacks

Discover how you can protect with access management security.

How Step Up Authentication Works

Thales' SafeNet Access Management and Authentication Solutions leverage configurable, white-box policy rules to enable granular control over the level of authentication required each time a user logs in to an online resource.

The context engine analyzes a user’s logon attributes based on a set of configurable parameters—including geographical location, IP address, time of day, and device recognition—and generates a context assurance level. If a security policy is met, users are granted access. If a security policy is not met, the user may be asked to step up security by providing an additional authentication factor.

Context-based authentication is currently supported by SafeNet Trusted Access.



"We’re beginning the switch to broad use of multi-factor authentication as an important new safeguard for our employees and our enterprise. Security attacks are unrelenting, and we view MFA as a vital and necessary addition to VUMC’s enterprise cybersecurity program."

- Andrew Hutchinson, Executive Director of Enterprise Cybersecurity, VUMC

Read the Case Study


What is cloud access management?

How does it work?

Context-Based & Step-Up Authentication Products

SafeNet Trusted Access

SafeNet Trusted Access offers identity-as-a-service, combining the convenience of cloud single sign-on with granular access security. By validating identities, enforcing access policies and applying cloud SSO, organizations can ensure secure, convenient access to numerous cloud applications from one easy-to-navigate console.

Learn More About SafeNet Trusted Access

SafeNet MobilePASS+ Out-of-Band Push Authentication

Offering frictionless strong authentication to hundreds of applications, including SaaS and VPNs, push authentication on mobile devices lets users authenticate with a single tap of a finger on their mobile device.

Learn More About SafeNet MobilePASS+ Out-of-Band Push Authentication

GrIDsure Authentication

GrIDsure Authentication is a convenient pattern-based authentication solution that overcomes the weakness of passwords without the need for software to be installed or hardware to be provisioned.

Learn More About GrIDsure Authentication

SafeNet Trusted Access クラウドベースのアクセス管理とSSOサービス - Product Brief

SafeNet Trusted Access ワンタイムパスワードとシングルサインオン クラウドサービス - Product Brief

クラウドベースのアプリケーションは、企業における生産性、運用、インフラの ニーズを満たす上で極めて重要な役割を果たします。しかし、クラウドアプリケ ーションの使用が増大するにつれて、ユーザーのクラウドアクセス用 IDは増加 し、管理負担も増していきます。新しいクラウドサービスが組織に追加されるた びに、クラウドアクセスの統一した可視性が実現しにくくなり、コンプライアンス リスクも増大します。ユーザーは数えきれないほどのユーザー名とパスワード を記憶するのに苦労し、一方でパスワードリセットを必要とするヘルプデスク コールは山のように積み上がります...

SafeNet MobilePASS Plus - Product Brief

SafeNet MobilePASS Plus - Product Brief

Discover more about SafeNet MobilePASS+, a next generation software token that offers secure one-time passcode (OTP) generation on mobile devices, as well as single-tap push authentication for enhanced user convenience.

Thales GrIDsure Authentication

Thales GrIDsure Authentication - Product Brief

Providing unparalleled convenience to end users and simple deployment to IT staff, Thales GrIDsure Authentication is Providing unparalleled convenience to end users and simple deployment to IT staff, Thales GrIDsure Authentication is a pattern-based authentication solution...