NOMINATION HIGHLIGHTS

Complex authentication environments increase security incidents and operational inefficiencies. In particular, as enterprise systems and cloud services continue to diversify, users are required to log in repeatedly. To address this inconvenience, iSIGN Password-less provides a unified authentication architecture in which a single, strong authentication at the PC OS logon stage automatically grants access to all business services connected to iSIGN SSO, without the need for a password. This simplifies the authentication experience while strengthening security controls. iSIGN Password-less fundamentally reduces the user burden and support workload associated with password dependency while ensuring consistency in authentication control.

Achievements: Real-life Passwordless Transition

iSIGN Password-less is not a simple authentication transition that eliminates passwords, but an authentication framework designed with the practical constraints of real operational environments in mind. By implementing an architecture that is not dependent on any specific technology or device, it ensures there are no authentication gaps under any condition, even in cases such as biometric restrictions, users without mobile devices, and network instability. This represents an effectiveness-driven strategy that reflects real-world conditions.

Innovation: Flexible Authentication Control Design
The core innovation of this solution lies in “granting administrators the authority to design authentication controls.” Each authentication method, including biometric authentication, FIDO-based authentication, OTP, and QR authentication, differs in terms of security strength, usability, and environmental dependency. iSIGN Password-less is designed to allow administrators to directly define and combine authentication methods in accordance with the organization’s security policies, operational criticality, and user characteristics.

For example, access to critical systems can be configured to permit only specific authentication methods or require multi-factor authentication, while more flexible policies can be applied in general work environments, enabling organizations to construct an authentication framework aligned with their own risk levels. This transforms authentication from a fixed mechanism into a controllable layer that can be designed and adjusted on a policy basis.

Impact: Structural Authentication Governance Aligned with Global Security Standards

iSIGN Password-less provides an architecture aligned with Zero Trust security strategies and the advancement of digital identity frameworks. Through centralized integrated management, it enables authentication policies to be applied and modified by user groups, while detailed audit logs allow organizations to track history and policy enforcement status. By presenting a governance framework built on CC-certified technology that enables organizations to define their own risk parameters and adjust control intensity accordingly, iSIGN Password-less stands as a robust passwordless solution.