Ad Image

Centrify Delivers Derived Credential Authentication Support for Mobile Devices

centrifylogoCentrify will implement derived credentials for secure mobile access to apps, websites and services that require smart card authentication, according to an announcement from the company at Mobile World Congress in Barcelona this Tuesday morning.

Derived credentials allow common access card (CAC) and personal identity verification (PIV) based authentication via mobile devices, without requiring dedicated smart card readers. This new capability extends Centrify’s integration of identity-based security to mobility, offering secure single sign-on (SSO) in highly regulated environments.

“We are very excited that Centrify now offers derived credential authentication from mobile devices, which historically has failed to move beyond the proof of concept stage,” said Bill Mann, chief product officer of Centrify. “Until now, users could only access highly secured apps and content via laptops and desktops, due to regulations mandating smart card-based two-factor authentication. Attempting to use mobile devices with smart card readers for the same access was cumbersome at best. This announcement opens the door to full mobility for state and federal government as well as security-conscious companies that rely on smart cards for authentication.”

At a glance, Centrify’s derived credentials offer the following benefits:

  • Secure CAC/PIV based SSO to cloud and on-premises apps
  • Integrated device management to manage and lock down devices
  • The ability to enroll devices and provision derived credentials to them
  • Derived credential issuance from popular certificate authorities
  • Compliance with FIPS 201-2 and NIST SP 800-157 to satisfy HSPD-12 and OMB-11-11, allowing mobile access to apps, websites, and services that require smart cards authentication
  • App provisioning to set up user accounts within target applications
  • Workflow to ensure only the right users get access
  • Easy deployment into existing enrollment and issuance portals

Share This

Related Posts