We've created a lightweight Okta® SSO integration for device identity, that offers the strongest possible guarantee that your Okta apps are only available on trusted devices. Now you can lock down your most sensitive resources with next-gen device authentication🔒 But how does it work? 🤔 Our cross-platform desktop application issues every authorized device a cryptographic ID that’s bound to a device’s silicon. Unlike a security token or a key file, it cannot be brought to another device. This feature strongly constrains any attack surface area involving sensitive resources. 👉 Check out the demo from Carl Tashian on the Smallstep blog: https://hubs.ly/Q02Mbl4t0 If you'd like to speak with someone on our team to learn more about how this solution ups your game from the standard Okta Device Identity, reach out to us! https://lnkd.in/gXA6RekK
Smallstep
Computer and Network Security
San Francisco, CA 984 followers
End-to-end encryption for your devices, workloads, and people
About us
Smallstep empowers organizations to effortlessly deploy end-to-end encryption across their infrastructure. The comprehensive platform detects and mitigates anomalies, equipping developers with a toolkit that continuously monitors everything, everywhere. Smallstep removes the gap traditional secrets create, using certificates to enable trusted communications between technology and people. Learn more about operationalizing end-to-end encryption for all your devices, workloads, and people at smallstep.com.
- Website
-
https://smallstep.com/
External link for Smallstep
- Industry
- Computer and Network Security
- Company size
- 11-50 employees
- Headquarters
- San Francisco, CA
- Type
- Privately Held
- Founded
- 2016
- Specialties
- Identity, Security, mTLS, PKI, open-source, SSH, certificate management, and Zero Trust
Locations
-
Primary
San Francisco, CA 94110, US
Employees at Smallstep
Updates
-
It's the last day of #CyberSecurityAwareness month! We asked Smallsteppers to share some actionable tips on what users can do to stay safe online and protect themselves from phishing. 🎣 Here are 3 you can start RIGHT NOW: 1. Enable 2FA everywhere you can! 2. Use a password manager. (No one has time to remember all those unique, strong strings of characters anyway!) 3. Update your software. (We know, we know. Waiting for that reboot is not our idea of fun either.) Don't even get us started on number 5! 👀 Head on over to the blog to read if you are guilty... https://hubs.ly/Q02Wx2xv0
-
Here's another reminder: With Apple rolling out MAC Address Rotation on iOS 18, iPadOS 18, and macOS Sequoia, it's a clear nudge for businesses to ditch MAC address allowlisting—an outdated practice that never really provided true security. The way forward is 802.1x EAP-TLS (certificate-based authentication). 🔐 At Smallstep, our Wi-Fi solution provides a Certificate Authority, geo-distributed RADIUS server, and MDM integrations for the seamless deployment of certificates and network profiles to your clients, so you can have the highest possible assurance that only select devices can access your Wi-Fi network. Learn more about securing your network with certificate-based Wi-Fi here: [https://hubs.ly/Q02V9dFh0] Watch the full video on MAC Address Rotation in the comments. 📽️ #Cybersecurity #8021x #EnterpriseWiFi #MACAddressRotation #RADIUS #MDM #Smallstep
-
In case you missed it, macOS Sequoia 15, released last month, introduced MAC address rotation. By default, macOS devices will now periodically rotate random MAC addresses when connected to a Wi-Fi network, adding extra protection against tracking. If your organisation still uses static MAC address filtering, it’s time for a reconsideration. While you can configure your MDM to use the hardware MAC address on managed Wi-Fi networks, our latest article explains why it’s not worth the trouble—and what you should focus on instead for better security. If you’re interested in network security or just want to clear up some common misconceptions, give it a read! 🔗 Check it out here: https://hubs.ly/Q02R1mQf0 Would love to hear your thoughts in the comments! #cybersecurity #WiFiSecurity #NetworkSecurity #TechMyths #Smallstep #MACAddressFiltering #SSID
-
It’s happy hour at Booth 21 at #Oktane2024! Come visit us at Okta’s Identity event of the year. We are Raising the Bar on Device Trust 🚀😉 #deviceidentity #devicetrust #cybersecurity
-
Smallstep is headed to #Oktane24! Chat one-on-one with product experts, and see how you can Raise the Bar on Device Trust. Get a demo of Smallstep + Okta in action and snag yourself some exclusive swag 🙌 With Smallstep + Okta you can get the strongest possible guarantee that your Okta apps are only available on trusted devices. Smallstep's cross-platform desktop application issues every authorized device a cryptographic ID that’s bound to the device’s silicon. Unlike a security token or a key file, it cannot be brought to another device. This feature strongly constrains any attack surface area involving sensitive resources. See for yourself by clicking here: https://hubs.ly/Q02R6r_P0 ⏰ Set a reminder to join us for the Device Trust Bar at Booth #21 on Wednesday, October 16th at 3:00pm. Happy hour is on us!
-
macOS Sequoia 15, which was publicly released last week, introduces a feature that’s both a blessing and a curse: MAC address rotation. On one hand, users get more privacy—devices can’t be easily tracked since their MAC address changes periodically, even after connecting to a network. This goes beyond regular MAC address randomisation, which only changed MAC addresses during the probing phase. On the other hand, it’s poses a challenge for organisations that rely on static MAC addresses to identify devices on their network and control which ones can connect. In our latest article, We dive into why pseudo-security measures like MAC address filtering and hiding SSIDs won’t be effective anymore—and what you should focus on instead for better security. 🔗 Check it out here: https://hubs.ly/Q02R1hr70 Would love to hear your thoughts in the comments! #cybersecurity #WiFiSecurity #NetworkSecurity #TechMyths #Smallstep #MACAddressFiltering #SSID
-
We agree Linda Ikechukwu - passwords have GOT TO GO 🔑👏🏻
Finally getting around to posting this as last week was a whirlwind! I had the chance to attend Infobip Shift in Zadar, Croatia, and spoke to an excited crowd about Passwordless authentication with Passkeys. Passwords are the bane of my existence, and I'm sure it’s the same for lots of users. We're constantly burdened with creating complex passwords, forgetting them, resetting them, and eventually settling for something simple (and weak), leaving us vulnerable to account takeover attacks from credential spraying and phishing. But, as developers, we can change that! My talk was all about spreading the word on how we can move beyond passwords and give users a much better experience. Here’s what I covered: * A 2-minute rant on why passwords are the source of all our problems ( this was very much needed 😂) * Why passkeys are the future (and way better than passwords). * How passkeys work (I got really technical). * How to integrate them into your apps and websites. In a nutshell, while passkey portability and recovery processes still have some rough edges, it’s evolving fast. They are already production-ready, top teams are using them, and honestly, you should too! So glad I got the chance to share this at Shift! #passkeys #userauthentication #infobipshift
-
Thanks for the shout out Nadia T. 🎉 We are excited to share our newest integration with Jamf, now available on the marketplace 👏🏻
🎉 Welcome to Jamf Marketplace, Smallstep Managed Device Identity by Smallstep 🎉 Excited to share Smallstep Managed Device Identity is now integrated with Jamf Pro! This integration brings PKI-based device identity and automated certificate management to your Apple ecosystem, ensuring secure access to networks and data. By integrating Smallstep’s PKI infrastructure with Jamf Pro, IT teams can easily manage device authentication, network security, and encryption without the manual overhead. Discover how PKI and Jamf Pro together create a scalable, zero-trust solution for Apple devices. 💡 Learn more about our partnership here: https://lnkd.in/g8h2gcUu 📖 Deployment guide here: https://lnkd.in/gguaTkjF While you're there, take a look at marketplace.jamf.com to discover over 300 technical partner integrations, deployment guides, configurations and to learn more about ways to extend your Jamf platform. Special thanks to Herman Slatman, Carl Tashian, Josh Drake and the rest of the Smallstep Team! #Jamf #Smallstep #PKI #ZeroTrust #DeviceIdentity #AppleMDM #Cybersecurity #ITAutomation #Security
-
Find Cass, Michael Malone , Ted Malone or Brandon Batten to meet up at Black Hat today or tomorrow in Vegas! 🎰
Making PKI fun✨ at Smallstep | Ops Strategy for Tech + SaaS | Creative Problem Solver | Street Psychologist & Change Agent ✌🏼
Found a black hat at Black Hat 😆 Broke my mat leave bubble to join the Smallstep team in the business hall. Come find us if you’re here! 😵💫 And if you need a place to get away from the hustle & buzz, we’re hosting a Meet & Greet at our suite from 3-6pm. DM me for the deets if you’re in town!