BYOD has become the new normal for many enterprises in recent years – even extending to normal practice within government agencies. Although convenient, the practice risks compromising structural security. At worst, there is a risk to critical national assets whose integrity, given the advances in cyber-espionage, has recently become the subject of increasing scrutiny.
Within federal government agencies, the Personal Identity Verification (PIV) program ensures that employees and contractors can work both flexibly and securely. With derived credentials, using the PIV credential as the basis of trust, the cryptographic credential is stored securely on a mobile device, and can be used to provide secure access to agency systems, services and data from smartphones, tablets and laptops – providing the perfect combination of ease of use and security for federal users.
Intercede’s MyID was the first Derived PIV Credential (DPC) solution to receive an Authority to Operate (ATO) for a federal agency. It supports both smartphones and tablets and can also be issued to tablets and notebooks supporting Microsoft Virtual Smart Cards (VSCs) and/or Intel Authenticate VSCs. The solution is agnostic in terms of Public Key Infrastructure (PKI) Certificate Authorities (CAs), giving agencies maximum flexibility and freedom.
The MyID Identity Agent app and framework interface with the MyID server to support a range of credential stores, including the device native key store (iOS and Android), MyID protected software key store, and a range of Mobile Device Management (MDM) and Enterprise Mobility Management (EMM) systems’ key stores.
To find out how Intercede can help you secure access to your mobile applications and environment using the MyID DPC solution, or to see the solution in action at the National Cybersecurity Center of Excellence (NCCoE) DPC lab, get in contact.