Auth0 provides critical tools for securing your applications against people who are interested in attacking information technology systems. Multi-factor authentication (MFA) reduces risk by requiring more than one type of user validation, while attack protection features automatically detect and respond to malicious behavior such as rapid, repeated failed logins or one IP address rapidly attempting to log into multiple accounts. Auth0 maintains and meets the requirements for multiple compliance frameworks and certifications including GDPR and HIPAA.

Protect Your Application

Make sure only the right people can access your applications.

Application Credentials

This section contains information about credentials for your application to authenticate.

Attack Protection

Detect attacks and stop malicious attempts to access your applications.

Continuous Session Protection

Enhance security and tailor the user experience through customizable session and refresh token management.

Auth0’s Mobile Driver's License Verification Service

Learn about Auth0’s Mobile Driver’s License Verifiable Credential service.

Multi-Factor Authentication

Add additional checks to ensure passwords match up with the identity of the user or device accessing your applications.

Security Center

Observe potential attack trends and quickly respond to them in real-time.

Security Guidance

View security bulletins and learn basic tips to secure data and accounts.

Sender Constraining

Learn how to sender constrain tokens in Auth0.

Tokens

Explore the types of tokens related to identity and authentication and how they are used by Auth0.

Protect Your Tenant

Learn how to protect your tenant and rate limits.

Tenant Access Control List

Learn how to protect your tenant from unwanted traffic with Tenant Access Control Lists (ACL).

Compliance

Learn how Auth0 supports compliance frameworks such as GDPR and HIPAA.

Data Privacy and Compliance

Read about Auth0’s compliance qualifications and data processing.