On October 10, 2024, between approximately 12:50 and 13:30 UTC, a service degradation affected a subset of our North American customers utilizing our NA3 authentication service. This degradation may have resulted in slower-than-normal performance and increased authentication failure rates for users.
The incident was triggered by a combination of post-upgrade activities and atypical authentication traffic patterns. While our scaling infrastructure promptly detected the issue and initiated mitigation efforts, the initial responses were insufficient to fully prevent customer impact. As a result, additional resources were deployed to restore service to normal operating thresholds.
Mitigations
In response to this incident, RSA is committed to enhancing the ID Plus service and its associated processes. Our proactive steps include:
· Scaling Enhancements: Fine-tuning our service parameters to enable even faster scaling to better accommodate shifting authentication traffic patterns.
· Malicious Traffic Mitigations: Implementing additional protective measures and alerting mechanisms for customers experiencing password spraying attacks. Many of these enhancements have already been deployed as optional features, with further improvements scheduled for upcoming releases. Furthermore, we are integrating additional mitigations into our core service to strengthen our defenses.
· Over-Provisioning Strategy: Increasing baseline deployment capacity as a precautionary measure until our scaling enhancements are fully operational.