Gregory Vigroux | Senior Product Manager
More About This Author >
Gregory Vigroux | Senior Product Manager
More About This Author >
As large organizations increasingly shift towards passwordless solutions, the benefits are clear: enhanced user experience, improved security, and significant cost savings. The FIDO (Fast Identity Online) standard has emerged as the gold standard in authentication technology, providing a robust framework for secure and convenient access.
However, despite its advantages, many organizations face substantial hurdles when attempting to implement and scale FIDO-based solutions. During pilot programs and full-scale rollouts, IT teams often encounter obstacles that complicate the swift deployment and efficient management of FIDO authenticators throughout their lifecycle. These challenges can arise from a variety of factors, such as the difficulty of activating FIDO authenticators in various systems, configuring them at scale, or applying persistent security rules, from their activation to revocation.
To address these challenges, Thales has developed a solution that empowers organizations to deploy FIDO keys rapidly to all employees while ensuring seamless management over time. In this blog, we will explore how SafeNet eToken Fusion NFC PIV – the innovative FIDO security key designed by Thales - unlocks the potential of passwordless across your organization.
Unlock the potential of passwordless across all devices in your organization.
The newly introduced SafeNet eToken Fusion NFC PIV enables passwordless, phishing-resistant authentication across a wide range of devices. Its combined USB-based connectivity and contactless modes ensure compatibility with a wide array of devices, including Windows desktops, Mac, and mobile devices, enhancing its widespread applicability and convenience.
Get the best from FIDO and PIV for a progressive migration to modern authentication.
SafeNet eToken Fusion NFC PIV serves as both a FIDO security key, and a PIV Token (Personal Identity Verification), empowering organizations to adopt FIDO authentication for secured access to modern web applications while maintaining certificate-based authentication for legacy resources and operations such as digital signatures or file encryption.
Accelerate and secure your FIDO deployment thanks to powerful token configuration and administration capabilities.
The SafeNet eToken Fusion NFC PIV offers advanced security features and is available in two editions.
The SafeNet eToken Fusion NFC PIV supports FIDO2 version CTAP 2.1 and provides comprehensive enterprise-grade features for secured key management:
- Definition of minimum PIN length
- Enforcement of user verification
- Forced PIN change
- PIN change and FIDO key reset
- Management of discoverable credentials.
In addition, the SafeNet eToken Fusion NFC PIV Enterprise takes security to the next level by incorporating Thales’ innovative enterprise features.
These features, when combined with the appropriate platform, enable organizations to securely and efficiently manage the FIDO security key throughout its entire lifecycle. This edition offers a range of additional benefits, including:
- Registration of the FIDO security key on behalf of users to multiple identity providers and web services
- Persistence of the minimum PIN length set up in the key throughout its lifecycle
- Listing of authorized applications accessible with the key by the end user
- Key unblocking in the event of a forgotten PIN, without requiring a full reset
These unique features make the SafeNet eToken Fusion NFC PIV Enterprise an ideal solution for large organizations seeking to accelerate their transition to passwordless authentication while enabling streamlined and efficient token management processes.
Get best-in-class security
To optimize security levels, performance and functionality, Thales selected Infineon’s SLC3x Security Controller family. Infineon's security controller is certified to the security level CC EAL 6+ (high) and designed for various secured identification and authentication use cases.
In addition, Thales has designed its own FIDO cryptographic libraries providing a stronger defense against potential threats.
Thales takes security a step further with its controlled operations. The company oversees the entire manufacturing cycle, from design to production to delivery. This end-to-end control means that every aspect of the product is scrutinized for security, ensuring that customers receive solutions that are not only customized to their specific needs but also built with the highest security standards in mind.
Comply with the most stringent requirements in your market
Regulated markets often face stringent guidelines to ensure security, accountability, and transparency. Many public or private organizations in Government, Healthcare or Critical Infrastructure sectors must comply with standards such as the National Institute of Standards and Technology (NIST) regulations or the U.S. Trade Agreements Act (TAA). These regulations are designed to protect sensitive data, ensure fair trade practices, and uphold the highest levels of security for critical operations.
Moreover, the SafeNet eToken Fusion NFC PIV is compliant with the U.S. Trade Agreements Act, which helps organizations ensure that they are sourcing products that meet the necessary legal criteria. This compliance is crucial for government contractors and others who must align with U.S. federal regulations.
In addition to meeting TAA standards, Thales’s SafeNet eToken Fusion NFC PIV is also compliant with Personal Identity Verification (PIV) requirements. This compliance ensures that the device can be used securely across various government and regulated sectors, reinforcing the identity verification process necessary for accessing sensitive systems and information.
To further enhance its security credentials, Thales is actively pursuing FIPS 140-3 certification. This certification is recognized as a benchmark for security in cryptographic modules and will provide additional assurance to organizations that their security measures meet federal standards.
Meet SafeNet eToken Fusion NFC PIV
The SafeNet eToken Fusion NFC PIV by Thales is a powerful accelerator for large organizations‘ transition to passwordless authentication. With its dual functionality as both a FIDO security key and a PIV token, it bridges the gap between modern web applications and legacy systems, providing a comprehensive approach to secure authentication. The innovative features for lifecycle management, robust security certifications, and compliance with stringent regulations make it an ideal choice for organizations committed to enhancing their security posture while simplifying user experience. Organizations can confidently embrace the future of authentication, ensuring that they not only meet regulatory requirements but also build a foundation of trust and security in an increasingly digital world.
Want to know more?
- Watch our joint webinar “The Secret to Scalable FIDO Success”
- Request your sample to test out