Glossary Term

Out-of-Band (OOB)

Out-of-Band authentication factors are identity signals that do not rely for their veracity on the same system requesting user authentication.

For example, an SMS code sent to a mobile phone to enable a desktop login is likely to be an out-of-band identity factor. However, an SMS code sent to a mobile phone to enable an app login on the same phone is generally not an out-of-band identity factor, since proof of identity is being requested in order to use phone features, yet the identity "proof" being offered is possession of the very same phone.

Such "in-band" authentication flows make compromise relatively easy if the phone has been stolen. Out-of-band authentication factors are generally considered to be significantly stronger proof of identity than in-band authentication factors.

2FA/MFA Rapid Reference

Authentication at a glance

Download the 2FA/MFA Rapid Reference now:

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms

 

2FA/MFA Rapid Reference

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms
Save PDF  

MORE DOWNLOADABLE REFERENCES

PDF

2020 Authentication Guide

Summary of authentication recommendations from major standards bodies, plus Plurilock’s own recommendations.
PDF

White Paper: Advanced Authentication

The state of authentication today—and why you need Plurilock products.
PDF

Understanding MFA vs. Privacy

Is multi-factor authentication always good for privacy? See why it isn't, and which strategies make the grade.
PDF

Behavioral Biometrics Guide

The definitive guide to behavioral biometrics, a core Plurilock technology.