Security incident on record — 2011 breach — SecurID seed records compromised; historical but still cited. Spun out from Dell to Symphony Technology Group $2.075B 2020
▪ Editorial verdict
RSA SecurID has a 30-year heritage in enterprise authentication and the RADIUS and VPN integration depth for legacy infrastructure remains the strongest in the market. For organisations with significant legacy network infrastructure that cannot support SAML or OIDC, RSA SecurID's RADIUS coverage is a practical necessity rather than a preference.
The honest assessment is that RSA SecurID is a legacy authentication platform. The 2011 seed record compromise, the STG PE ownership since 2020, and the lack of FIDO2 passkey prominence make it difficult to recommend for new deployments when modern alternatives exist.
The verdict: RSA SecurID is right for organisations with existing RSA deployments and significant legacy RADIUS infrastructure requirements. New MFA deployments should evaluate Cisco Duo, Microsoft Entra MFA, or Yubico YubiKey.
Last reviewed: May 2026
G2
4.0100 reviews
Gartner
4.3500 reviews
PeerSpot
7.8120 reviews
Gartner MQ: Niche Player (Access Management)
MFA / Passwordless Authentication assessment
PROTECTIONAdequate
Phishing-resistant factors
3 / 5
RSA SecurID hardware tokens generate OTPs — resistant to phishing but not to real-time MITM attacks. Scored 3 because traditional OTP tokens are not considered fully phishing-resistant under NIST AAL3 criteria.
Sources: NIST SP 800-63B, RSA documentation
Factor breadth & fallback
4 / 5
Hardware token OTP, software token, push notification, biometric via RSA Authenticate. Scored 4 for good factor variety.
Sources: RSA SecurID documentation
OPERATIONSAdequate
Adaptive & risk-based policies
3 / 5
RSA Risk AI provides contextual authentication with risk-based step-up. Scored 3 because the risk engine is less sophisticated than Okta, Microsoft, or Duo.
Sources: RSA documentation
Device posture integration
3 / 5
Basic device context integration. Scored 3 because MDM and EDR posture signal integration depth is less than Duo or Microsoft.
Sources: RSA documentation
ANALYTICSAdequate
Authentication telemetry
3 / 5
Authentication event logging and reporting. Scored 3 because telemetry depth and SIEM integration breadth is at category average.
Sources: RSA documentation
TRUST & ECOSYSTEMStrong
Admin & privileged protections
4 / 5
On-premises deployment option enables air-gapped admin authentication — uniquely valuable for government and defence. Scored 4 for this specific privileged access use case.
Sources: RSA documentation
Strongest: Factor breadth & fallback
Watch out for: Authentication telemetry
Strengths & limitations
Strengths
●30+ years of MFA heritage — trusted in government, defence, and financial services
●Hardware token option — RSA SecurID hardware still mandatory in many regulated environments
●Strong on-premises deployment for air-gapped and classified environments
Watch out for
●Legacy architecture — significantly less cloud-native than Duo or Okta
●UI dated compared to modern MFA platforms
●2011 RSA breach (SecurID seed records) still referenced in industry risk discussions
Best for
Government agencies, defence contractors, and financial institutions with existing RSA deployments or strict on-premises/air-gapped MFA requirements.
Not suitable for: Cloud-native orgs — legacy architecture poorly suited to modern SaaS environments