Frequently Asked Question

How does Plurilock confirm user identities? How does it work?

Plurilock leverages a small amount of lightweight code to gather and analyze ambient, observable data about a user that is generated as they compute.

As Plurilock gathers and analyzes this data, it compares the results to past results for the same user. If the results are sufficiently similar, the user’s identity is confirmed. If the results are not sufficiently similar, the user’s identity is rejected.

Behavioral-biometric data is the primary body of data used by Plurilock products for authentication purposes. Specifically, the identity signals gathered and analyzed include keyboard timing patterns, location and travel data, network context, and system identity data in the case of Plurilock ADAPT, or keyboard timing patterns and pointer interaction timing patterns in the case of Plurilock DEFEND.

The data gathered and analyzed by Plurilock is highly individual, yet is also numeric, statistical, and non-biographical in nature—it can’t be used to reconstruct a user’s activities, preferences, interests, or real-world identity. The similarity and difference thresholds used in deciding whether to confirm or reject a user identity are configurable by system administrators, and the actions taken when identity is rejected are also configurable by system administrators.

2FA/MFA Rapid Reference

Authentication at a glance

Download the 2FA/MFA Rapid Reference now:

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms


2FA/MFA Rapid Reference

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms
Save PDF  



2020 Authentication Guide

Summary of authentication recommendations from major standards bodies, plus Plurilock’s own recommendations.

White Paper: Advanced Authentication

The state of authentication today—and why you need Plurilock products.

Understanding MFA vs. Privacy

Is multi-factor authentication always good for privacy? See why it isn't, and which strategies make the grade.

Behavioral Biometrics Guide

The definitive guide to behavioral biometrics, a core Plurilock technology.

Stay informed. Join our low-volume mailing list for Plurilock and cybersecurity news and updates.


Plurilock is the leader in advanced, risk-based authentication. We provide invisible, device-free MFA for corporate endpoints, Citrix sessions, cloud applications, and their users in finance, healthcare, education, and SaaS.



Contact Plurilock

Have a question or comment? 

Plurilock Lead Capture Block

Show Q1

Show Q2

Show Q3

Welcome to Plurilock!

We’d love to hear about your interest in our products.

May want to buy

Evaluating options

Just looking, thanks

Let's chat  


Okay, cool.

We'd like to provide you with more info. How can we reach you?

Enter your email above to agree to receive commercial electronic communication from Plurilock via email.


Someone from Plurilock will get in touch with you soon.
In the meantime, learn more about our ADAPT and DEFEND products—and be sure to check out our Blog for in-depth cybersecurity coverage.