Microsoft Aims to Transform Employee Access Cards into Hardware Keys for Account Authentication?
Brook.X
Is turning access cards into hardware security keys a viable idea? It certainly sounds intriguing, and Microsoft is on the move to convert corporate employee access cards into hardware keys to enhance account security from a physical standpoint.
Microsoft has recently announced a new partnership with HID, a leader in identity verification technology solutions, aiming to streamline multi-factor authentication (MFA) for corporate employees and bolster security.
As part of this collaboration, HID will integrate with Microsoft Entra ID. Once integrated, employees at enterprises using HID solutions will be able to use their physical access cards as a method of verification for Entra ID.
This verification method allows employees to easily log into Microsoft 365 and other Microsoft applications. It not only facilitates quicker logins but also leverages access cards, already linked with authentication information, as physical security keys against phishing attacks.
Microsoft hopes this new partnership will encourage enterprises to shift more rapidly towards phishing-resistant and passwordless authentication, which is crucial for businesses. The annual losses businesses suffer due to phishing attacks are staggering.
HID’s access and authentication solutions include both physical access cards and virtual access cards based on mobile devices. However, regardless of the type, the process eventually involves reading the card, suggesting employees might need card readers for identity verification.
A senior product manager from the Microsoft Security team stated:
"One of the most critical steps in deploying MFA is protecting user identities. The purpose of Microsoft Entra ID's external authentication methods is to establish fast, simple, and secure MFA verifications by allowing enterprises to use their chosen third-party MFA solutions, extending Entra ID. HID’s integration offers flexibility through its wide range of authenticators and the convenience of choosing modern physical access cards as an MFA factor for accessing facilities and digital resources."
The Strategic Alliance Director at HID commented:
"Our long-standing partnership with Microsoft has brought valuable MFA innovations. Together, we are committed to advancing the future of passwordless technology. Our solutions meet enterprises' needs for any level of defense, achieving completely phishing-resistant passwordless authentication."
