SILVERFORT’S AGENTLESS
AUTHENTICATION PLATFORM

 

PATENT-PENDING TECHNOLOGY

NO SOFTWARE AGENTS
NO INLINE PROXIES
NO CODE CHANGES

HOW DOES IT WORK?

Silverfort introduces a revolutionary new approach that enables secure authentication and access across enterprise networks and cloud environments in a holistic and non-intrusive way.

By seamlessly applying a layer of protection on top of existing authentication protocols, Silverfort eliminates the need to deploy any agents and proxies, or to make any changes to existing servers and applications. This enables organizations to protect assets that don’t support secure authentication today without having to modify them, and to extend protection to interfaces that are not covered by any other MFA solution.

Silverfort’s platform monitors all human and machine access requests, across all systems and environments, continuously analyzing risk and trust levels in real-time, applying adaptive risk-based authentication policies and preventing unauthorized access to any sensitive asset.

Users
and Endpoints

Access Requests

(Kerberos, LDAP, NTLM, SAML, OIDC, RADIUS, etc.)

Services
and Resources

(on-prem & cloud)

Identity Stores

(Active Directory, Cloud-Native IdPs, RADIUS, etc.)

2nd Authentication
Factor

(Silverfort or 3rd party)

Step by Step:

  • 1Authentication request sent to the identity store
  • 2Identity store performs standard verification
  • 3The response is routed to Silverfort, using native features of the directory server (no agent is required) and with built-in failover
  • 4Silverfort analyzes the message in real-time, calculates risk using AI, and applies policy (allow/deny/MFA)
  • 5If needed, Silverfort verifies the user's identity using MFA
  • 6If access is permitted, Silverfort returns the message to the identity store, and from there to the unaware client/server

OUR TECHNOLOGY

In today’s perimeterless networks, with countless different users, devices and systems communicating with each other across dynamic on-premise and cloud environments, it is no longer possible to assume trust. Validation of user identities and continuous analysis of risk and trust levels are becoming essential, especially for those looking to implement a Zero Trust security approach. However, implementing secure authentication and access system-by-system with agents and proxies is not realistic, nor will it provide the needed results.

Silverfort’s unique agentless and proxyless solution is possible thanks to a combination of several innovative technologies:

Ability to Monitor Authentication and Access Requests Without Agents or Proxies

Read More

Ability to Monitor Authentication and Access Requests Without Agents or Proxies

Silverfort monitors all access requests of users and machines by leveraging native features of authentication protocols and identity management solutions in
a unique way.

Most enterprise systems and devices use the same few authentication protocols, such as LDAP/S, Kerberos, NTLM, OpenID Connect, RADIUS, and more. Silverfort’s patent-pending technology monitors and actively protects all those access requests, without requiring any modifications to endpoints or servers, and without deploying proxies between them.

Non-Intrusive Analysis
of Encrypted
Authentication Protocols

Read More

Non-Intrusive Analysis
of Encrypted
Authentication Protocols

Silverfort’s innovative approach was considered unattainable in the past, because authentication protocols are often encrypted, and analyzing them in a non-intrusive manner seemed impossible.

Silverfort achieved a technological breakthrough that allows it to analyze encrypted authentication and authorization messages in real-time and actively protect them, without decrypting them, and without the need for any encryption keys or privileges.

This gives Silverfort a strategic advantage with a unique technology that other vendors cannot match.

Holistic and Continuous
AI-Driven Risk Analysis

Read More

Holistic and Continuous
AI-Driven Risk Analysis

AI is only as good as the data you give it
— Dr. Nicola Millard

Silverfort typically monitors 20x-50x more data than any other risk-based authentication solution, thanks to its agentless and proxyless architecture. Silverfort is the first unified authentication platform that analyzes all user and machine access activity, across all enterprise networks and cloud environments, not only at the perimeter but within the network too. The holistic nature of Silverfort’s AI-driven risk engine allows it to continuously analyze risk with unparalleled accuracy to deliver intelligent authentication and Zero Trust policies for real-time threat prevention.

THE SILVERFORT ADVANTAGE

The only solution that can enable MFA for systems and interfaces that couldn’t be protected until today, including homegrown and legacy applications, critical infrastructure, file systems, databases, and admin access tools such as PsExec that currently allow attackers to bypass agent-based MFA.

The only holistic authentication solution that delivers unified authentication and access policies across all users, assets and environments, both on-premises and in the cloud, instead of protecting assets one-by-one which is no longer practical.

A powerful AI-driven risk and trust engine, continuously analyzing all human and machine access requests based on 20x-50x more data than any other risk-based authentication solution – not only at the perimeter but within the network too.

The only non-intrusive authentication platform: does not require software agents, inline proxies or any code changes on individual servers/applications. This allows customers to extend secure authentication and access to all sensitive assets, even in complex hybrid environments.

Improves the user experience
and minimizes disruptions
by reducing the number of MFA requests to sensitive and high-risk situations.