- Download Now
Prevent Brute-Force Attacks and Dictionary Attacks
Confident KillSwitch™ is an optional technology feature that can be used with any of Confident Technologies’ image-based authentication solutions. It can positively identify and proactively defend against brute force attacks and credential harvesting on account logins, password reset processes, transaction verifications and other authentication requests, collecting actionable data the business can use to halt attempts to compromise accounts in real-time.
With Confident KillSwitch, the user establishes one or more “no pass” categories in addition to their regular authentication categories. If a hacker or computer bot attempts to fraudulently authenticate using brute-force or random guessing and selects one of the images fitting one of the user's "no pass" categories, Confident KillSwitch can automatically alert the business or account owner that unauthorized access is being attempted. It can immediately lock all access to the online account, or can present increasingly difficult ImageShield challenges while gathering important information including the IP address, geographic location and behavioral biometrics of the would-be attacker, and whether it’s an attempt to compromise a single account or part of a broader attack on the organization or even across multiple organizations.
The data collected by Confident KillSwitch can also be fed into the company’s risk engine, fraud-detection platforms, or other adaptive security systems to further enhance the decisions made by those systems and help the organization proactively defend against the attacks.
The business can also dial up or dial down security by showing a larger grid of images or by requiring the user to choose 4 categories instead of 3, or by having the user choose more than one KillSwitch category.
Confident KillSwitch is an optional feature that can be used with any of our image-based authentication solutions. Administrators can determine how many KillSwitch categories users should establish, how many failed authentication attempts are allowed, and what action should be taken when the KillSwitch is triggered.
As a cloud-based technology, it can be easily integrated with risk engines, fraud-detection platforms and other adaptive security systems to provide those systems actionable data about the attack as it’s happening and determine a course of action. It is available for white-label integrations by security vendors, application developers and businesses wanting to incorporate image-based authentication in their own mobile applications, web services or security offerings.
To learn more about image-based authentication and Confident KillSwitch, contact us today.