Risk-Based Authentication

Another good article from Bruce on authentication.  Basically the article says to apply risk points to authentication, such as someone whom logs in from the same machine all the time would have a lower risk.  My 2 cents, this could be a very complicated thing to set-up.  But would help enhance security.  https://www.schneier.com/blog/archives/2013/11/risk-based_auth.html