In its latest six-month update of the Passkey Pledge initiative, the FIDO Alliance has officially distinguished Secfense as a key driver of passkey adoption in enterprise environments.

This recognition carries significant weight. The FIDO Alliance’s update is not merely a directory of participants; it is a curated summary highlighting only those organizations that have demonstrated concrete actions and measurable results during the program's initial phase.

Among over 200 signatories, Secfense was singled out for delivering on the promise of a passwordless future, moving beyond declarations to actual, evidence-based deployment.

Here is what the report reveals about the state of authentication and why Secfense’s approach to legacy modernization was highlighted as a critical enabler.

1. A quick intro: What is the FIDO Alliance?

FIDO Alliance is a global association that develops open authentication standards, including FIDO2 and WebAuthn, with the mission of eliminating passwords and replacing them with public-key cryptography.

Members include:

• Leading global technology providers (e.g., Google, Microsoft, Apple),

• financial institutions and payment providers,

• telecommunications operators,

• government institutions,

• cybersecurity companies.

Today, FIDO standards form the backbone of phishing-resistant authentication, especially in regulated sectors that require strong, modern, and verifiable security controls.

2. What are passkeys?

Passkeys are a user-friendly implementation of FIDO2 standards designed to replace passwords entirely.

Instead of shared secrets, they leverage a cryptographic key pair stored securely on the user’s device.

Key properties include:

• phishing resistance,

• no shared secrets,

• authentication through local mechanisms (Windows Hello, Touch ID, Face ID, FIDO hardware keys),

• broad support across browsers, platforms, and mobile apps

Because of these advantages, passkeys are rapidly becoming a cornerstone of security modernization strategies across banking, insurance, and the public sector.

3. The Passkey Pledge: Separating intent from impact

Launched in 2025, the Passkey Pledge challenged joining companies to commit to tangible actions within 12 months: increasing adoption, educating the market, and sharing data.

While over 200 companies joined the pledge, the FIDO Alliance’s recent summary focuses exclusively on those who delivered measurable outcomes.

• Key Insight: Secfense’s inclusion in the report confirms that high-velocity passkey deployment is achievable even in the most demanding infrastructures.

4. Why was Secfense recognised in the report?

The FIDO report explicitly highlights Secfense as a technology enabling real-world passkey deployments in complex environments.

The Alliance noted that Secfense’s specific contribution lies in its architectural approach, acting as an intermediary layer (User Access Security Broker). This allows enterprises to:

• Deploy without Refactoring: Enable passkeys on applications without modifying a single line of code.

• Bridge the Legacy Gap: Support both modern (OIDC/SAML) and legacy applications that lack native WebAuthn support.

• Accelerate Compliance: Deliver large-scale passkey roll-outs in short cycles - a critical capability for financial and insurance sectors facing strict regulatory timelines (e.g., DORA, NIS2, PSD2).

This recognition applies not only to our technology, but to successful production deployments in high-security, compliance-driven environments.

5. Validated success in the Financial Sector

A closer reading of the report shows that, among more than 200 participating companies, only three examples document real production passkey deployments in financial institutions:

HYPR - technology vendor

• Passkey deployments in two of the four largest U.S. banks.

• Focus on replacing passwords with FIDO2 in modern login flows.

First Credit Union - Financial Institution

• Passkeys deployed for all customers.

• 60,000+ users.

• Over 50% of logins already performed via passkeys.

Secfense - technology vendor

• Passkey deployments across banking and insurance organizations.

• Coverage for both modern and legacy systems.

• Support for complex, mixed-protocol environments (Kerberos, SAML, OIDC, VPN, RDP, proprietary mechanisms).

• Production rollouts in highly regulated institutions.

This places Secfense in a unique position: We are one of only two technology vendors globally acknowledged in this report for delivering production-grade passkey solutions to financial institutions.

6. The Strategic takeaway: Why this matters

Secfense’s recognition in the Passkey Pledge update is a validation of an architecture designed for reality, not just theory.

In its summary, the Alliance noted that Secfense enables:

• passwordless, phishing-resistant sign-ins across enterprise environments,
  
  
  

• with no changes to existing applications,
  
  
  

• in deployments measured in months,
  
  
  

• including large-scale rollouts in highly regulated banking and insurance sectors,
  
  
  

• while avoiding disruptions to user experience and operational workflows.

This validation confirms that full passkey adoption is achievable even in environments built on legacy systems, a challenge many organizations assume to be impossible.

8. Where the market is heading

The direction is clear:

• Passkeys are moving from experimentation to production deployment

• Financial institutions are leading the charge on phishing-resistant auth.

• Intermediary technologies (like Secfense) are becoming essential for modernizing legacy stacks.

• Regulators are no longer asking for improved security across the entire stack; they are mandating it.

Secfense’s recognition in the Passkey Pledge update is a validation of an architecture designed for reality, not just theory. 

Proud to be recognized not just for pledging support for this future, but for actively building it.