Hero Image

User research on FIDO passwordless adoption barriers in enterprise context for CPL’s SafeNet Trusted Access

Project Details

Start: November 2022
End: February 2023
Client: Thales Digital Solutions Purchaser: Cloud Protection & Licensing (CPL)

Background

CPL's SafeNet Trust Access, a leading identity and access management software designed for medium to large enterprises, sought to enhance its product by delving into the realm of passwordless authentication. To understand the barriers and opportunities surrounding the adoption of FIDO2 standards, our team was commissioned to conduct interviews with enterprise IT security specialists.

Objectives

The primary goal was to explore the knowledge, needs, and intentions of IT security specialists regarding FIDO2 standards for passwordless authentication. Additionally, we aimed to uncover the reasons behind the slow adoption of these standards at enterprise level clients.

Methodology

  1. Work Plan Creation:

    • A comprehensive work plan was developed to outline the steps required for the research process, ensuring a systematic approach to gather relevant insights.

  2. Candidate Selection:

    • A targeted screener was employed to identify and select six top candidates—enterprise IT security specialists with expertise in identity and access management.

  3. In-Depth Interviews:

    • The chosen specialists underwent in-depth interviews, allowing us to probe their knowledge, understand their needs, and explore their intentions regarding the implementation of FIDO2 standards.

  4. Analysis and Workshop:

    • Results from the interviews were meticulously analyzed to derive meaningful insights. A team workshop, hosted at CPL's site, facilitated a collaborative discussion to establish use cases and devise a development plan for integrating FIDO2 in an enterprise context.

Outcomes

  1. Use Cases Establishment:

    • Through collaborative workshops, use cases for FIDO2 implementation in an enterprise context were established, aligning with the identified needs and intentions of IT security specialists.

  2. Development Plan:

    • A comprehensive development plan was devised, addressing the barriers and ensuring a smooth integration process. This plan served as a roadmap for enhancing CPL's SafeNet Trust Access with FIDO2 standards.

Impact and Future Outlook

The insights garnered from this case study provided CPL with a strategic roadmap for incorporating FIDO2 standards into SafeNet Trust Access. By understanding the needs and intentions of IT security specialists and addressing barriers to adoption, CPL is poised to revolutionize enterprise security, offering a more secure and user-friendly authentication experience.

This case study underscores the importance of targeted research and collaboration in shaping the future of identity and access management solutions within the rapidly evolving landscape of enterprise cybersecurity.

Contributors and Roles

  • Louis-Philippe Bellerose - User experience researcher

Tools Used

  • Miro
  • MS Team
Previous Post Next Post