RSA announces the release of RSA Adaptive Authentication Mobile SDK Modules 4.1

Document created by RSA Product Team Employee on Jan 29, 2020Last modified by RSA Product Team Employee on Jan 29, 2020
Version 2Show Document
  • View in full screen mode

Summary:

 

RSA announces the availability of RSA Adaptive Authentication Mobile SDK Modules 4.1. With this release, RSA provides new enhancements.

 

What's New in this Release

RSA Adaptive Authentication Mobile SDK Modules 4.1 includes these new features, enhancements, and changes.


Mobile SDK Data Collection Module as both a Static Library and Framework for iOS

Adaptive Authentication Mobile SDK Modules 4.1 provide the Mobile SDK Data Collection Module for iOS as a both a static library and a framework to allow the customer the flexibility to choose the preferred integration method.

Note: For Adaptive Authentication Mobile SDK Modules 4.0.0, the module was delivered only as a framework, and not as a static library.

For more information, see Installing Mobile Data Collection Module in the RSA Adaptive Authentication Mobile SDK Data Collection Module Developer's Guide.

 

Google SafetyNet Attestation: Server Side Response Validation

To comply with Google security recommendations, Google SafetyNet Attestation response validation can now be performed on the Adaptive Authentication server side component, and collected by the Mobile SDK Data Collection Module.  This option requires the customer to change the configuration in the client application.  Validation on the Adaptive Authentication server side component is performed according to Google recommendations.

Note:

  • SafetyNet server side response validation is supported only for Adaptive Authentication (On-Premise) 7.1 P4 and later. It is not supported for Adaptive Authentication (Cloud) or Adaptive Authentication (On-Premise) 13.7 and later.

  • The compromised field collected from the Mobile SDK Data Collection Module can be leveraged within Adaptive Authentication using the Mobile Device is Compromised fact in the Policy Management application during rule creation.

  • To incorporate SafetyNet for Adaptive Authentication (On-Premise) 7.1 P4 and later, you must download these files:

For more information about configuring the application, see RSA Adaptive Authentication Mobile SDK Data Collection Module Developer's Guide.

For more information about integrating SafetyNet server side validation, see the RSA Adaptive Authentication Integration Guide, SafetyNet Validation for Adaptive Authentication Mobile SDK Modules chapter


Google SafetyNet Verify Apps

Adaptive Authentication Mobile SDK Modules 4.1 leverages the Google SafetyNet Verify Apps API to detect the device compromised status. This Verify Apps feature is optional, and is implemented using the configuration parameter in the Mobile SDK Data Collection Module. For information on integration, see RSA Adaptive Authentication Mobile SDK Data Collection Module Developer's Guide.

For Adaptive Authentication (on-Premise) 7.1 P4 and later, Adaptive Authentication (Cloud) and Adaptive Authentication (On-Premise) 13.7 and later, the compromised field collected from the Mobile SDK Data Collection Module can be leveraged within Adaptive Authentication using the Mobile Device is Compromised fact in the Policy Management application during rule creation.

 

Download Instructions

Register to download the product package and documentation from RSA Link at https://community.rsa.com/docs/DOC-41815.

 

For additional documentation, downloads, and more, visit the RSA Adaptive Authentication page on RSA Link.

 

EOPS Policy:

RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the Product Version Life Cycle for additional details.

Attachments

    Outcomes