Introducing the world’s first Device Identity Platform™

Ensure only company-owned devices can access sensitive resources.

Smallstep solves the other half of Zero Trust by securing Wi‑Fi, VPNs, ZTNA, SaaS apps, cloud APIs, and more with hardware-bound credentials backed by ACME Device Attestation.

Contact us
Cisco Kenna Security logoKameleoon logoKCF Technologies logoIBM logoSamsara logoCrusoe logoHashiCorp LogoMeta logoCapital One logoEtsy logoCisco Kenna Security logoKameleoon logoKCF Technologies logoIBM logoSamsara logoCrusoe logoHashiCorp LogoMeta logoCapital One logoEtsy logo

Trusted by 78 of the Fortune 100

Introducing ACME Device Attestation

Smallstep co-developed a real standard for high-assurance device identity with Google at the IETF. It's called ACME Device Attestation, ACME DA for short, and is a major upgrade to existing solutions like SCEP. ACME DA leverages hardware co-processors for attestation and keybinding⎯like a fingerprint for your device⎯ preventing credential exfiltration, phishing, and impersonation attacks.

Learn more

Hardware-bound credentials for all the things ✨

Device identity ensures that only company-owned devices can access your enterprise's most sensitive resources. This includes Wi-Fi networks, VPNs, financial dashboards, intellectual property, databases with GDPR-scoped PII, and Git repos. The Device Identity Platform™ provides the strongest possible guarantee of authentic device identity by binding access to the device's silicon.

Learn more
32,175Smallstep managed
6Pending approval
2No owner assignment
7Require attention

Go beyond user credentials

Zero Trust is more than user authentication. It’s about verifying everything: people, and devices, even the applications or services they run. A robust Device Identity strategy will keep your enterprise ahead of breaches, especially with remote work and cloud adoption on the rise.

Multi-OS support is already here

Smallstep supports ACME DA natively on all operating systems. This enables consistent and secure cross-platform access no matter which OS your team prefers. MacOS, Windows, and notably Linux, protect them all (and your enterprise) with cross-platform device identity.

Learn more

Built for teams that want security and simplicity at scale

For Enterprise IT teams

Secure corporate owned devices, networking infrastructure, & source code

For DevOps teams

Secure VMs, Kubernetes, cloud workloads, SSH, and mTLS everywhere

Leading the industry in Zero Trust for devices

"We knew we had device identity gaps, and Smallstep is the only one doing this."

Client Platform EngineerEnterprise SaaS Company

background gradient

“We thought we had a solution for device identity until we talked with Smallstep and learned about the gaps we hadn’t seen.”

Senior Security EngineerVisual Media Platform

background gradient

"We started trying to build this ourselves, and it was a total tire fire. Far more expensive than we first estimated."

Security ArchitectSocial Technology Company

background gradient

"We weren’t interested in device identity as a hobby. We needed a single solution with an architecture that solves for all our use cases."

Director DevSecOpsSocial News Network

background gradient

“Don't waste your time with other vendors that treat Device Identity as a slapped-on feature.”

Sr. IT Systems EngineerFinancial Services

background gradient

Integrates with everything in your stack

See all 100+ integrations
gradient background

Leading the industry in Zero Trust for devices

Empower your teams to work at the pace and scale of modern engineering.

Book a demo