The National Institute of Standards and Technology (NIST) has defined the use of a ‘derived credential’ for use on mobile devices. With derived credentials, the cryptographic credential is stored securely on a mobile device and can be used to provide secure access to systems, services and data from phones and tablets. There’s no need for a dedicated mobile CAC or PIV reader, and there’s much more flexibility for users.
With the release of v10.8.25, Citrix XenMobile now fully supports derived credentials for iOS with Intercede MyID®. XenMobile can now support using derived credentials for MDM enrollment, mVPN access to on-premises services, authentication to Microsoft Exchange, and S/MIME support for signing and encrypting emails in Secure Mail. This is a full end-to-end solution for the best and most secure mobile user experience.
Citrix has partnered with Intercede to bring this solution to market. IntercedeMyID is currently deployed and trusted by many civilian and DoD US Federal agencies and delivers a complete derived credential ecosystem using currently available components and services. Federal Government agencies and commercial organizations are equally able to ensure secure mobilization of their employees, contractors and customers with derived credentials delivered by MyID.