Smallstep Device Identity Platform

Smallstep Device Identity Platform is an enterprise solution that extends Zero Trust security to device identities, complementing existing user identity controls such as SSO and MFA. The platform issues hardware-backed device credentials to endpoints including laptops, servers, containers, and IoT devices, ensuring that only trusted, company-owned devices can access sensitive resources such as Wi-Fi networks, VPNs, financial systems, and regulated databases. A core technical capability is support for ACME Device Attestation (ACME DA), a standard co-developed with Google at the IETF as a replacement for SCEP. ACME DA provides strong guarantees of authentic device identity, mitigating credential exfiltration, phishing, and impersonation attacks. The platform is built on open-source cryptographic foundations used by a large number of Fortune 100 companies for DevOps workload security. Device credentials are managed across a multi-OS fleet inventory (Linux, macOS, Android, iOS, Windows) with configuration, credential issuance, and enforcement controls. Credentials are automatically revoked when a device is removed from inventory or fails posture checks. The platform integrates with mobile device management (MDM), identity provider (IdP), and device posture platforms to extend and harden existing enterprise security stacks.