Risk-Based Authentication & User Trust

Didi and Lital discuss a range of topics related to cybersecurity, focusing particularly on user trust and identity management. They introduce the concept of user trust, explain its significance, and differentiate it from application reputation and risk-based authentication. They delve into the intricacies of session trust, continuous authentication, and the challenges of managing non-human identities. The episode also provides insights into the importance of adaptive and transparent policies, and offers recommendations on how to start implementing effective user risk assessment strategies. Additionally, they touch upon session management complexities and the impact of compromised human accounts. The hosts stress the importance of a continuous feedback loop to improve policies and enhance security postures. They wrap up by discussing upcoming speaking engagements and inviting listeners to future events.

Topics

00:19 Casual Catch-Up and Hobbies

00:58 Diving into Identity and User Trust

03:26 Understanding Risk-Based Authentication

07:37 Session Trust and Continuous Authentication

13:30 Challenges in Identity Management

14:44 Policy Recommendations and Best Practices

21:21 Upcoming Events and Conclusion