Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Step-up authentication prompts users for stronger verification on sensitive actions, applying extra checks only to higher-risk operations.
Step-Up Authentication Definition: Step-up authentication prompts users for stronger verification on sensitive actions, applying extra checks only to higher-risk operations.
Step-up authentication is a security pattern that prompts a user for additional, stronger verification when they attempt a sensitive action, even if they already hold a valid session. For example, a user logged in with a password may be required to provide a one-time code or biometric before transferring funds or changing account settings. This risk-based approach balances usability with security by reserving high-friction checks for high-risk operations rather than applying them to every request.
Step-Up Authentication is one of the topics you'll master in the Security+ Boot Camp.
Security+ Boot Camp →