"Why Combining FIDO2 and PKI Provides Broader Enterprise-Wide Security"
The COVID-19 pandemic has changed how and where corporate resources are accessed, which heightens the need for organizations to update their identity and authentication systems. According to a 2021 Gartner CIO survey, more than 60 percent of employees at CIOs' organizations can now work from home, thus changing the shape of the landscape for authenticating users. It is important to remember that the transition to cloud-based services and the automation supporting digital workloads have resulted in significant increases in virtual machines, mobile devices, applications, containers, Internet of Things (IoT) devices, and other non-human entities, all of which are trying to have their own access to enterprise resources apart from the end user's identity. The management of machine identities has made it more important for organizations to engineer identity authentication and trust verification in all of their digital interactions. However, there is a debate regarding the paths of the security technologies: Public Key Infrastructure (PKI) and techniques, such as FIDO2 and Microsoft Windows Hello for Business. A report developed by CyberScoop delves into the importance and advantages of each technology. The report concludes that each of the technologies will likely play essential roles in the authentication of who and what can access an organization's resources. Experts, quoted in the report, suggest that these security approaches must work together as IT environments continue to evolve. This article continues to discuss the impact of the transition to remote work on the authentication landscape, the management of machine identities, PKI, FIDO2, and efforts to combine these technologies to provide broader enterprise-wide security.
CyberScoop reports "Why Combining FIDO2 and PKI Provides Broader Enterprise-Wide Security"