Gartner Research

A Guidance Framework for Selecting User Authentication Solutions

Published: 08 November 2017

ID: G00332217

Analyst(s): Paul Rabinovich


Organizations choosing an authentication solution need a list of relevant features to compare products. This guidance framework helps technical professionals identify the appropriate capabilities for implementing user authentication.

Table Of Contents

Problem Statement

The Gartner Approach

The Guidance Framework

  • Prework
  • Use Cases and Integration Features
    • Integration With Existing Identity Repositories
    • Single Sign-On (SSO)
  • Authentication Types and Methods
    • Passwords and Passwordless Authentication
    • MFA
    • Emergency Authentication
    • KBA
    • Continuous Authentication
  • Adaptive Authentication
  • Mobile Authentication
    • Integration With EMM Suites
    • Mobile SDKs
    • Mobile Credentials
  • Management and Administration
  • Security Features
  • Logging, Reporting and Analytics
  • Delivery Model
    • Delivery Model: As Software
    • Delivery Model: As a Service
  • Follow-Up

Risks and Pitfalls

  • Narrow Focus on Specific Use Cases
  • Mismatch Between Asset Risk and Trust Provided by Authentication
  • Treating All MFA Methods as Equivalent
  • Underestimating the Needs of a Particular User Population
  • Failure to Secure Processes "Adjacent" to Authentication
  • Lack of Business Continuity Planning
  • Related Guidance

Gartner Recommended Reading

©2021 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.

Already have a Gartner Account?

Become a client

Learn how to access this content as a Gartner client.