000035834 - Fuzzy logic score configuration behind secret questions RSA Adaptive Authentication 7.x (On Premise)

Document created by RSA Customer Support Employee on Jan 15, 2018
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035834
Applies ToRSA Product Set: Adaptive Authentication (On Premise)
RSA Version/Condition: 7.x
IssueThis article provides documentation and explanation on the fuzzy logic value comparators in the back office admin console configuration for authentication methods, secret questions, and the acceptable match score, along with steps on how to edit those values. 
ResolutionTo help prevent user lockout due to mistyped answers, RSA Adaptive Authentication (On Premise) provides a set of fuzzy logic comparators. Fuzzy logic can help catch 10 to 15 percent of user typos, which helps prevent lockouts and unnecessary customer support calls. The fuzzy logic comparators are located in the c-config-challenge.xml file in the AdaptiveAuthentication\WEB-INF\classes\configs\ directory. You should set these comparators at the same time as the challenge questions.
For each question, you can add a list of fuzzy logic comparators.  You can use multiple comparators for different types of answers.
For example:

<property name="comparators">
        <ref bean="TypoDistance1_4"/>
        <ref bean="TypoDistance2_6"/>

Each type of comparator returns a fuzzy logic score between 0 and 100. The highest score returned by the number of configured comparator is compared with the configured value in BackOffice > Administration > Authentication Methods > Question - Acceptable Match Score.
Configuring this value to 100 is the highest score that the provided answer is more accurate and 0 is the less accurate.
For more information please refer to the RSA Adaptive Authentication (On Premise) 7.3 Operations Guide in the section Fuzzy Logic Comparators for Challenge Questions, beginning on page 42.