Beyond Identity, a specialist in passwordless, phishing-resistant multi-factor authentication (MFA), announced on 21 February, 2024 the release of a novel device security tool. The new solution called Device360 heralds a breakthrough in continuous device security posture management. Indicating a unique approach to device security, Device360 has been built to deliver an easy to manage admin experience, provide complete visibility into device security posture and importantly, merge device security with authentication.

Jasson Casey, CEO of Beyond Identity, underscored the need for such a tool. He said: "With the volume and variation in devices accessing corporate resources today, authentication solutions must be expansive enough to include device trust to ensure that only the right people on safe devices can access the right data and services. "With Device360, we are addressing a blind spot in device security visibility that other platforms can't, by providing insights and control for unmanaged endpoints."

Device360 will particularly support organisations in their bid to manage risks linked with bring-your-own-device (BYOD) practices, where users and collaborators utilise their personal devices for work purposes. It allows organisations to easily monitor the security of a whole fleet of devices that may be owned, managed and configured distinctly. Until now, organisations could only ensure this level of visibility and proactive security for managed devices using mobile device management (MDM) and endpoint detection and response (EDR) tools, which can be expensive and resource-heavy.

Glen Saunders, Security Engineer at mParticle, highlighted the potential of Device360, saying that it will "significantly increase visibility across our fleet. We're doing this with Osquery right now but having the visibility tied to authentication is a strong indicator of risk."

Device360 can be used as a standalone solution or in conjunction with Beyond Identity's Secure Workforce offering. 

For the initial period, Beyond Identity is offering the first 100 users a free one-year access to Device360 product. It has not been mentioned when the product will be available following this initial trial period.

Features include:

Centralised visibility into vulnerabilities and misconfigurations

Device360 provides an overview of vulnerabilities and misconfigurations across your entire fleet of devices, a central report to help track, assure, and prove device compliance, and the ability to drill down on risky devices to perform more in-depth diagnoses on device security posture.

Real-time and scheduled device query with managed Osquery

With 45 ready-made device queries, Device360 simplifies using Osquery, requiring no SQL knowledge or experience. It facilitates real-time and scheduled queries, ensuring continuous endpoint security and risk assessment over time.

Visibility over unmanaged devices

Device360 solves this challenge by combining privacy-preserving security assessments with authentication in a lightweight single authenticator that does not require administrative privileges to the end users device.

Test zero-trust access policies

Device360 enables policy simulation, allowing administrators to test access policies without affecting user authentication in production, enabling administrators to build complex policies and understand the impact of enforcing device trust policies per zero-trust authentication strategies.

Enforce device security compliance at the time of authentication

In conjunction with Beyond Identity's Secure Workforce platform, Device360 allows administrators to go beyond visibility and enforce access policies using device security insights, ensuring that only compliant devices can access corporate resources and applications.