Press Release

RSA Provides Risk-Based, Transparent Authentication to Enterprises Across Broad Range of Industries

EMC’s Security Division Expands Choice and Flexibility in Authentication with New Release of RSA® Adaptive Authentication to Provide Access to Corporate Resources Based on Risk, Cost and User Convenience.

RSA CONFERENCE® 2009 / San Francisco, April 21, 2009 - 

RSA, The Security Division of EMC (NYSE: EMC) announced an expansion to its authentication solution portfolio with the new release of the RSA® Adaptive Authentication platform that provides enterprises across a broad range of industries with risk-based, transparent and flexible access to corporate resources. RSA Adaptive Authentication is delivered through on-premise software or software-as-a-service and helps to provide enterprises including AMD and Geisinger Health System with a low cost of ownership and increased end-user convenience through the use of a self-learning risk analysis and assessment engine using indicators such as device identification, user behavior profiling and data via the RSA eFraudNetworkSM community.

“For companies with large online customer populations, consumer authentication technology that runs in the background has proved to be very viable. Other firms choose to employ more tangible or detectible methods of authentication to meet their specific business and customer requirements,” said Mark Diodati, Senior Identity and Privacy Analyst at Burton Group. “Likewise, different industries have requirements that can vary significantly, and as a result we see more seeking out authentication models that are less apparent to the user and expect this trend to grow.”

The new release of the RSA Adaptive Authentication platform is designed for large, distributed enterprise environments and helps to identify users using self-learning risk indicators before interacting with corporate resources such as e-mail, intranets and extranets. The SaaS-based option can help to reduce costs, maintenance and overhead for authenticating large user populations. The new release of the RSA Adaptive Authentication platform is integrated with several leading SSL VPN solutions, web access management solutions including RSA® Access Manager for secure single sign-on to intranets, extranets, and portals, and RSA® Identity Verification for knowledge-based authentication. The RSA Adaptive Authentication platform is deployed at more than 8,000 organizations across the globe, currently protecting more than 225 million people against online fraud.

“Accelerating innovation relies on our network of external partners and suppliers having instant, secure access to our business-critical systems,” said Eddie Garcia, IT architect, AMD. “By enabling single sign-on, risk-based authentication and a centralized security policy, RSA Access Manager and RSA Adaptive Authentication are helping us keep administration costs low and remain competitive.”

RSA Adaptive Authentication is powered by the RSA® Risk Engine using self-learning risk indicators such as device identification, user behavior profiling, and fraud data from the RSA eFraudNetwork community that helps to fight against the increase in online crime targeted towards enterprises such as Trojan attacks and spearphishing. As engineered, RSA Adaptive Authentication is convenient for end users as their everyday behavior patterns are learned by the risk engine and are enabled with transparent authentication. Visible authentication methods such as challenge questions or out-of-band authentication through SMS, phone and e-mail are invoked only when user activity appears unusual or is of a higher risk profile based on established policies.

“We want to accelerate our business through a stronger security infrastructure to enhance customer confidence. Personally identifiable information such as sensitive homeowner information is sometimes unintentionally compromised by real estate agents and using adaptive authentication for convenient and secure access to networks is critical,” said Tim P Johnson, Chief Financial Officer and VP of Business Development, Rapattoni Corporation. “RSA Adaptive Authentication successfully addresses these issues and also provides a springboard for further growth.”

“Customers want to be able to approach authentication – and security in general – by understanding risk and balancing risk, cost and user convenience. We are enabling this approach through software-as-a-service, on-premise software, and an appliance model – and via a broad spectrum of methods including two-factor authentication to generate one-time passwords, knowledge-based authentication, risk-based authentication and certificate management,” said Tom Corn, Vice President of Product Marketing at RSA. “These authentication solutions are designed to be offered with a variety of form factors and mechanisms such as hardware tokens, software tokens embedded within mobile devices, hybrid authenticators, SMS and email, risk indicators, and out of band phone calls.”

Product Availability

The new release of the RSA Adaptive Authentication platform is available worldwide directly from RSA. For more information, please visit

Full press releases and resources based on RSA’s announcements and related initiatives at RSA Conference 2009 can be found online at

RSA’s information-centric security solutions and services will be featured in booth 1725 at RSA Conference 2009, April 20-24, at the Moscone Center in San Francisco. The RSA Partner Pavilion will be featured in booth 1737.

About EMC

RSA, The Security Division of EMC, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle – no matter where it moves, who accesses it or how it is used.

RSA offers industry-leading solutions in identity assurance & access control, data loss prevention, encryption & key management, compliance & security information management and fraud protection. These solutions bring trust to millions of user identities, the transactions that they perform, and the data that is generated. For more information, please visit and

Press Contacts

Jennifer McManus-Goode
RSA, The Security Division of EMC

RSA and eFraudNetwork are registered trademarks or trademarks of RSA Security, Inc. in the U.S. and/or other countries. EMC is a registered trademark of EMC Corporation in the U.S. and/or other countries. All other brands, product names, company names, trademarks and service marks are the properties of their respective owners.

This release contains “forward-looking statements” as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) adverse changes in general economic or market conditions; (ii) delays or reductions in information technology spending; (iii) our ability to protect our proprietary technology; (iv) risks associated with managing the growth of our business, including risks associated with acquisitions and investments and the challenges and costs of integration, restructuring and achieving anticipated synergies; (v) competitive factors, including but not limited to pricing pressures and new product introductions; (vi) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (viii) component and product quality and availability; (viii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (ix) insufficient, excess or obsolete inventory; (x) war or acts of terrorism; (xi) the ability to attract and retain highly qualified employees; (xii) fluctuating currency exchange rates; (xiv) litigation that we may be involved in; and (xiii) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC Corporation, the parent company of RSA, with the U.S. Securities and Exchange Commission. EMC and RSA disclaim any obligation to update any such forward-looking statements after the date of this release.