The traditional authentication model is binary and terminal: you prove your identity at login, the system issues a session token, and from that point until the session expires, the system trusts you completely. The session is either valid or invalid — there is no middle state. This model was designed for a world of on-premises applications, short sessions, and limited mobility. It is structurally mismatched with the current threat landscape, where session tokens are stolen, credentials are replayed, and attackers operate inside authenticated sessions for hours or days before detection. Continuous adaptive trust is the architectural response — a model where the trust decision is not made once at login but continuously, on every access event, against a risk score that updates in real time as context changes.
The Problem with Point-in-Time Authentication
Point-in-time authentication produces a binary outcome — authenticated or not — at a single moment. Everything that happens after that moment is outside the authentication model's scope. If the network changes, if the device becomes compromised, if the user's behaviour shifts dramatically, if the session token is stolen and replayed from a different location — the authentication system has no mechanism to respond, because it has already made its decision and moved on.
The structural problem is that the risk level of a session is not constant. A user who authenticates from their managed laptop at headquarters, then walks to a coffee shop and continues working on the same session, has meaningfully changed their risk profile — even though nothing about their credential or authentication event has changed. A user who authenticates normally, then five minutes later begins accessing account settings and initiating a high-value transfer, is exhibiting a risk pattern that the authentication event cannot account for. A legitimate session token that is exfiltrated and replayed from a cloud proxy represents a different risk than when the same token was issued — but the server sees the same valid token in both cases.
Gartner's CARTA (Continuous Adaptive Risk and Trust Assessment) framework formalised this problem in 2017 and proposed the architectural response: replace the binary authenticated/unauthenticated model with a continuous risk-trust evaluation that updates dynamically as context evolves. The framework has since been operationalised by all major identity vendors, and its principles underpin the Zero Trust access model that has become the dominant architectural direction for enterprise security.
What Continuous Adaptive Trust Actually Does
A continuous adaptive trust architecture evaluates every access request — not just the initial login — against a current risk score derived from a live set of signals. When the risk score is low (familiar device, expected location, normal behaviour, no active threat intelligence flags), access is granted silently with no friction. When the risk score rises above a configurable threshold — unusual location, new device, anomalous behaviour, threat intelligence hit — the system responds proportionally: requesting step-up verification, restricting access scope, or terminating the session and requiring full re-authentication. The response is calibrated to the risk level rather than binary.
This architecture means that a session that begins as low-risk does not remain unrestricted if the risk profile changes. An impossible travel event — the same credential authenticating from London and then from Singapore within an hour — triggers a risk response in real time, not at the next login. A device that loses its compliance status (disk encryption disabled, AV signatures out of date) triggers a session restriction mid-session, not at the next device check. The key property is that trust is not a one-time grant but a continuously recalculated outcome.
Gartner's CARTA framework defines the goal as "continuous adaptive risk and trust assessment at every decision point" — not just at authentication. In practice, this means every API call, every resource access, and every sensitive operation is an access decision that can be evaluated against the current risk context. The shift from "authenticated at login, trusted until logout" to "continuously evaluated throughout the session" is the core architectural change that continuous adaptive trust requires.
The Signal Stack: What Feeds Adaptive Trust
The richness of an adaptive trust system is determined by the signals feeding its risk engine. Thin signal stacks produce coarse risk assessments that miss nuanced attack patterns. Comprehensive signal stacks produce precise risk scores that distinguish legitimate anomalies (a user travelling for work) from genuine threats (a stolen token being replayed).
Device signals are the foundation: is this a managed device enrolled in your MDM or Intune? Is the device compliant with your security policy — patched, encrypted, with active endpoint protection? Is the browser or application version current? Has the device been enrolled in your trust framework before? Cisco Duo's device trust capabilities, Microsoft Entra ID's device compliance integration, and Okta's Device Trust framework all operationalise device signal collection as a prerequisite for session establishment — a device that is not managed and compliant cannot initiate a session at all, regardless of credential validity.
Network signals add context: is the source IP associated with known VPN exit nodes, cloud proxy infrastructure, or Tor? Has this IP appeared in threat intelligence feeds in the past 30 days? Is the IP consistent with the user's historical access patterns or with their stated geography? Network signals do not conclusively identify threats — VPN use is legitimate, IP geolocation is imprecise — but they contribute to risk scoring alongside other signals.
Behavioural signals capture session-level anomalies: impossible travel, velocity checks (multiple authentications in rapid succession from different locations), time-of-day deviation, and interaction pattern analysis from behavioural biometrics. Identity threat intelligence — signals from CrowdStrike Falcon Identity, Microsoft Entra ID Protection, or specialised ITDR platforms — adds external context: is this credential known to be compromised? Has this account been flagged in recent phishing campaigns? Are there indicators of credential-based lateral movement involving this identity elsewhere in the environment?
Policy Engine Architecture: Making the Risk Decision
The signal stack feeds a policy engine that translates risk scores into access decisions. The policy engine is where the security and usability balance is set: what risk threshold triggers what response, and for which users and resources. Getting this configuration right requires understanding both the threat model and the operational context — a policy that treats every new device as high-risk will generate unacceptable friction for a sales organisation where laptop switching is routine.
Conditional Access in Microsoft Entra ID, Okta's Adaptive MFA policies, and Cisco Duo's Policy Framework all implement policy engines with similar structural capabilities: condition evaluation (if device compliance is unknown AND location is outside the home country AND time is outside business hours, then trigger step-up MFA), response assignment (what the system does when a condition is met), and scope restriction (reducing the set of resources accessible without elevated verification). The sophistication of the policy engine — how many conditions can be combined, how granularly responses can be calibrated, how quickly policies can be updated in response to an active incident — varies significantly across vendors and should be a primary evaluation criterion.
Zscaler's Private Access platform and Palo Alto's Prisma Access implement continuous adaptive trust at the network access layer rather than the identity layer — evaluating every connection request against a current risk score and enforcing access policy at the network level regardless of whether the identity layer has already granted session trust. This architecture is particularly valuable for protecting legacy applications that cannot implement identity-aware authentication natively: the network access proxy enforces the adaptive trust policy transparently, without application modification.
Reducing MFA Fatigue Without Reducing Security
One of the most compelling operational benefits of continuous adaptive trust is MFA fatigue reduction — the ability to eliminate push notifications and secondary authentication challenges for low-risk sessions while maintaining full MFA enforcement for elevated-risk access. MFA fatigue attacks — where attackers flood a user with authentication requests until they approve one out of frustration — have compromised organisations including Uber and Cisco by exploiting the psychological burden of constant authentication prompts. Reducing prompt frequency for legitimate users while maintaining security for anomalous sessions eliminates the fatigue that makes these attacks effective.
The mechanism is risk-proportionate MFA: low-risk sessions (familiar device, expected location, normal behaviour, no threat intelligence flags) do not trigger a secondary authentication prompt at all — the risk score is low enough that the primary credential is sufficient. Elevated-risk sessions trigger MFA proportionate to the risk level — a medium-risk session might prompt for a TOTP code; a high-risk session might require hardware-backed authentication or manager approval. This approach reduces the total volume of MFA prompts by a significant percentage (typical production deployments report 60-80% prompt reduction) while increasing the effectiveness of MFA that does occur — because it is happening when there is an actual reason to challenge.
Implementation Roadmap: From Binary to Continuous
Migrating from a binary authentication model to continuous adaptive trust is a programme, not a deployment. The sequence matters — moving too fast on risk-based session termination before the signal stack is calibrated will generate user disruption that undermines adoption and creates pressure to loosen policy.
Start with visibility: deploy the signal collection infrastructure and run it in monitor-only mode for 30-60 days before enforcing policy. Use the monitoring period to understand your user population's baseline — what devices they use, where they access from, what time patterns look like — and to identify the signal thresholds that distinguish anomalous from routine variation in your specific environment. This data is the foundation for policy calibration.
Layer in enforcement incrementally, starting with the highest-confidence signals. Impossible travel detection (a physically impossible authentication event) has near-zero false positive risk and should be enforced early. Known compromised credential detection from threat intelligence feeds has similarly low false positive rates. New-device step-up MFA for users accessing sensitive resources provides meaningful security value with well-understood user experience impact. Add lower-confidence signals — behavioural anomaly, time-of-day deviation — only after the high-confidence layers are stable, and calibrate their thresholds against production false positive data before full enforcement.