RSA announced yesterday the new product offering of biometric voice authentication for banking transactions. This offering relies on the voice biometric AS WELL AS transaction authentication.
Each call is given a risk score. Higher risk transactions require more authentication of the identity including asking them secret questions. Each call is weighed by not only the biometric but also includes the user behaviour proile (e.g. time of day, phone number the user is coming in from, the transaction amount versus history of transactions, etc).
This is a good example of the future of authentication. Based on enterprise risk, a multi-factor authentication model is applied. For higher risk activities, such as financial transactions, transaction authentication is used to supplement the initial authentication. Therefore, even if the authentication was successful, in this case using a biometric, the transaction may be stopped, further questions asked, or a manager flagged in real time if the user profile exhibits unusual behaviour.