CAT is the next generation in authentication and draws from behavioral analytics to adapt the confidence rating of every log-in attempt.
Traditional MFAs stop after the push notification is sent and accepted, but with CAT, each log-in is treated differently and offers risk-appropriate responses. Do you normally work 9 to 5 but are attempting a 1am log-in? From a different country? Events like this will alert the trust engine to request additional identity verification from the user and alert them of possible fraudulent activity.