RSA Risk AI

Risk-based access intelligence

Automated identity intelligence

Secure: Detects anomalies that static rules miss and orchestrates policies to block risky activity or require step-up authentication.
Convenient: Let trusted users sail through with fewer step-ups and re-auth prompts.
Intelligent: Deterministic machine learning (ML) that self-tunes. No fraud analysts or data-science team required. Teams stay in control without complexity.
Manual tuning: Admins can manually adjust identity-confidence thresholds to prepare for planned changes and tuning the identity-scoring mechanism.

Table of Contents

Attackers keep inventing new ways to sneak past multi-factor authentication (MFA) with advanced AI-driven attacks, including session hijacking, help desk scams, and social engineering, or fraud. Traditional rules and static access policies can’t keep up.

RSA Risk AI is the intelligent layer of RSA ID Plus that spots these attacks in real time and stops them before they start. The solution uses machine learning and over 30 risk signals, like behavioral analytics and business context, for smarter access protection and easier user access.

Access based on identity confidence

When a user requests access to an organization’s resources, RSA Risk AI responds by instantly analyzing past and present user behavior, assessing the business context for the request, and performing real-time risk scoring. With this extensive intelligence, the technology establishes a level of confidence in the user’s identity—and determines whether it should grant access.

Machine learning to inform future access

RSA Risk AI is a risk engine that uses deterministic machine learning to get smarter over time. In the process of gathering information for access decisions, Risk AI builds a store of knowledge to inform risk scoring for future access requests. It constantly recalibrates based on what it has learned in the past and what it observes in the present to make optimal access decisions.

RSA Risk AI benefits

Stop advanced identity attacks fast: Real‑time confidence scores block or step‑up risky logins, stopping attacks before they start.
Let good users glide: Fewer needless prompts mean happier users and lighter help‑desk queues.
See risk, act quickly: Clear High/Low scores and “why” details turn alerts into instant action.
Set‑and‑forget protection: Self‑tuning models and unified policy orchestration slash rule‑maintenance work.
Continuous Zero Trust validation: Enforce least‑privilege access all day, every day, without blind spots or drift.
Anticipate—and learn from—anomalies: Admins can manually adjust identity confidence thresholds to account for and learn from planned anomalies like travel, mergers, or significant numbers of new users
Your data, your model: Each organization runs a private Risk AI instance that learns only from your organization’s activity; nothing is shared with RSA.

Secure authentication that’s easy for users and admins

As Risk AI becomes increasingly familiar with users’ behavior and the context for their access requests, the users themselves experience fewer authentication challenges. At the same time, security remains strong, with Risk AI detecting any anomalies and responding accordingly, either by requesting more information or denying the request if the level of risk warrants it.

Temporary tuning for planned changes

Admins can adjust the identity-confidence threshold to account for expected anomalies. Risk AI continues to score each request in real time; access policies use that score plus the temporary adjustment to decide whether to allow, step up, or deny.

When it helps

Planned events: office moves, travel, device rollouts, payroll cutovers, red-team exercises.
Short-term changes in behavior that would otherwise trigger extra prompts.

Discover more

Request a Demo

Get a Demo