Advanced Topic: Authenticator Assurance Levels

Why Beyond Identity

Why Beyond
Identity?

Go beyond traditional MFA and SSO with a secure access platform that’s built for modern teams and protects against modern risks.

About Beyond Identity

Partners

Compare

Customer Stories

Snowflake Goes Beyond Passwordless

Discover why Snowflake’s VP of Security, Mario Duerte, chose Beyond Identity as his Secure Access provider.

Read the story

Products

Beyond Identity improves security and enforces continuous, risk-based authentication for both the user and device.

Take a quick tour

Pricing

Integrations

Secure Access Overview

Secure Access solutions that go beyond traditional MFA and SSO,
that are purpose-built for modern teams and modern risks

Phishing-Resistant MFA

Passwordless MFA, Secure SSO and a suite of access risk detection features

Device Security Compliance

Protect your entire fleet: BYOD, contractor, and unmanaged devices.

Secure SSO

Frictionless, secure authentication that's easy to build, scale, and manage

AI Deception Elimination

Prevent AI deepfakes in collaboration tools

Solutions

All the tools teams need to detect, protect, prevent and manage access risks with ease and accuracy.

Secure SSO

Unlock simple and secure authentication

Phishing-Resistant MFA

Eliminate phishing risks

Passwordless Authentication

Continuous user and device validation

Access Policy Management

Simplified access, strong security

Device Trust

Enforce device security policies consistently

Identity Secure Posture Management

Uphold security and control in times of transition

Zero Trust Authentication

Enhance access security for managed devices

Compliance

Ease compliance with future-proof security

Resources

Get help, learn more, and find the answers you need to take your team beyond.

Resource Library

Customer Stories

Phishing Exploit Demos

Resources

support

Download Authenticator

Security & Compliance

Secure Access Overview

Learn more about Beyond Identity's secure-by-design Secure Access platform.

Advanced Topic: Authenticator Assurance Levels

What are authentication assurance levels?

Authenticator assurance levels (AAL) are a NIST standard that assess the degree of confidence and trust in an authentication.

Why are authenticator assurance levels important?

Authenticator assurance levels determine the strength of the authentication and level of security assurance provided by different authentication methods. There are three levels:

AAL1: Little to no confidence in the asserted identity's validity. Simple, phishable authentication methods.
AAL2: Moderate level of confidence in the asserted identity. Stronger authentication processes, including MFA.
AAL3: Highest level of assurance in digital identity. Multiple phish-resistant authentication factors used, including a hardware based authenticator

‍

Take our FREE zero trust assessment

Experience MFA done right

Ready to
take your team beyond?

Schedule a call today

Company

About Us Careers

Partners

Integrations Channel Partners

our Difference

Secure by design Easy to use

Compare

vs Traditional MFA vs Traditional SSO

Products

Secure Access Overview Phishing-Resistant MFA Device Security Compliance Secure SSO AI Deception Elimination

Solutions

Secure SSO Phishing-Resistant MFA Passwordless Authentication Device Trust Zero Trust Authentication Compliance

Resources

Blog & News Datasheets Events Glossary Videos

Support

Documentation Help Center Open a Ticket Status Download Authenticator Security & Compliance

Privacy Security & Compliance Vulnerability Disclosure Policy Breach HQ

By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Preferences Deny Accept

Privacy Preference Center

When you visit websites, they may store or retrieve data in your browser. This storage is often necessary for the basic functionality of the website. The storage may be used for marketing, analytics, and personalization of the site, such as storing your preferences. Privacy is important to us, so you have the option of disabling certain types of storage that may not be necessary for the basic functioning of the website. Blocking categories may impact your experience on the website.

Reject all cookies Allow all cookies

Manage Consent Preferences by Category

Essential

Always Active

These items are required to enable basic website functionality.

Marketing

Essential

These items are used to deliver advertising that is more relevant to you and your interests. They may also be used to limit the number of times you see an advertisement and measure the effectiveness of advertising campaigns. Advertising networks usually place them with the website operator’s permission.

Personalization

Essential

These items allow the website to remember choices you make (such as your user name, language, or the region you are in) and provide enhanced, more personal features. For example, a website may provide you with local weather reports or traffic news by storing data about your current location.

Analytics

Essential

These items help the website operator understand how its website performs, how visitors interact with the site, and whether there may be technical issues. This storage type usually doesn’t collect information that identifies a visitor.

Confirm my preferences and close