DerivedSelect

The Challenge

As enterprises shift towards a mobile workforce, smart cards’ inherent form factor and single protocol use can be difficult to manage resulting in stressed IT resources and unhappy end users.

The Solution

DerivedSelect is an affordable and efficient way for agencies to utilize existing investments, adopt modern protocols, and apply phishing-resistant (MFA). Following NIST 800 series publications, DerivedSelect is able to securely distribute and derive Public Key Infrastructure (PKI) user certifications and FIDO2 security keys at
the enterprise level. These authenticators are issued in a manner that ensures only the agency’s security keys are registered, with full lifecycle management of the credentials to ensure only active, valid users are granted access

The DerivedSelect Advantage

•  A simple and consistent platform that provides centralized identity and access management for internal and external customers at a reduced cost.
• Utilizes derived credentials: alternative tokens that enable strong authentication with mobile devices, such as smart phones and tablets. This derived credential can be a derived PKI, a derived FIDO2 token, or both.
• Includes organizational attestations to ensure that only approved hardware tokens are registered as MFA credentials for users, and that these credentials can only be used to access approved data and resources.