Intercede, a UK-based cybersecurity software company, with expertise in high-assurance digital identity and credential management systems, announced that the latest version of its credential management system – MyID CMS – is the first to support Enterprise Attestation within the FIDO authentication framework.
Intercede’s flagship product, MyID CMS, is widely used by government departments, defence contractors, and critical infrastructure providers to securely issue and manage digital credentials. With its latest release – version 12.15 – Intercede becomes the first to enable Enterprise Attestation within the FIDO authentication framework, a significant development for organisations requiring strict control over authentication devices.
The integration of MyID CMS with Yubico’s YubiKeys, which are the first hardware authenticators to support Enterprise Attestation, addresses a core challenge in the adoption of FIDO authentication for regulated environments. Traditional FIDO implementations prioritise user privacy, meaning the system does not track which specific device is being used—only that it is valid. While suitable for consumer use, this approach does not meet the demands of enterprises where it is critical to know which device is being issued, who owns it, and whether it remains compliant.
With Enterprise Attestation, each YubiKey can be uniquely identified and tightly managed throughout its lifecycle. MyID CMS allows administrators to issue only approved devices, track them by serial number, enforce policies for usage, and revoke access quickly if a device is lost or compromised. For organisations accustomed to smart card systems, which offer traceability and strict issuance protocols, this development offers a practical and secure path to adopting FIDO without sacrificing control.
The release also introduces enhanced PIN management features that support minimum PIN length requirements and mandatory PIN changes at first use. These capabilities are essential for environments where credentials are issued centrally or on behalf of users—enabling more flexible deployment scenarios without compromising security.
Intercede’s partnership with Yubico ensures a complete technology stack for large-scale deployments, with MyID CMS providing the backend credential issuance and management, and YubiKeys acting as secure, hardware-based authenticators. This combination allows enterprises to deploy passwordless authentication while maintaining visibility and auditability—key concerns in sectors such as finance, healthcare, and national infrastructure.
For physical security integrators, the significance lies in the alignment between identity and access. As authentication moves beyond passwords and into hardware-backed credentials, there is increasing overlap with physical access control, particularly in environments where logical and physical access must be unified under one policy. Intercede’s support for both PKI and FIDO within the same credential management framework positions it as a critical component in that convergence. Integrators involved in high-assurance or regulated deployments will need to understand how platforms like MyID CMS operate and how devices like YubiKeys can be incorporated into broader security infrastructures.
By bridging the usability of FIDO with the traceability of enterprise-grade credential management, Intercede is enabling the next phase of secure, scalable identity systems. For those delivering access control or identity solutions in sensitive environments, this advancement signals a strong shift in the expectations around device-level visibility and lifecycle management.