We’ve heard from customers and Yubico employees that have experienced first hand how difficult it can be for government employees to remotely and securely access essential web services like email, MyPay, and Defense Travel System. In the past, they would typically be required to login to a desktop, making access on the go essentially impossible. This all changed today with Yubico and Straxis, a mobile application provider, announcing a new app called MilSecure Mobile.
To learn more about how this innovation came to be and better understand the authentication challenges that the Defense Department (DOD) and service members face, we recently sat down for a Q&A with Jason Christensen, Lead Developer, Straxis Technology, and Alex Antrim, Senior Solutions Engineer, Yubico.
Can you share a bit more about the history between Straxis and Yubico?
Jason: Our partnership began thanks to Tri Trinh, Yubico’s Director of Federal Sector Development, and retired Air Force Colonel, who played a crucial role in implementing Air Force Connect – one of Straxis’s enterprise offerings for the Air Force. Yubico’s expertise in software and certification setup was invaluable to help us overcome a few challenges. Their solutions significantly enhanced accessibility for Air Force personnel, making it easier for them to access secure information quickly and efficiently.
Alex: Straxis’ existing applications and success in solving mobile challenges for DOD groups made them an ideal partner. Their work on Air Force Connect to streamline authentication processes laid the groundwork for our collaboration. By combining our resources, we tackled the complex issue of Smart Card authentication on mobile devices, which was not inherently supported by mobile operating systems.
How did the idea for this application come to be?
Alex: Initially, we utilized Yubico’s authenticator app to integrate Smart Card authentication. Over time, through iterative development and close collaboration, we built these features directly into the Straxis app, improving the user experience significantly. Cybersecurity isn’t supposed to be limiting or hard, and that wasn’t apparent in modern mobile phone systems. By working with Straxis, we were able to meet requirements from the US government while still making it easier to access the data. We’re confident that the DOD’s data stays where it’s supposed to stay but is able to be accessed by service members in a properly secured application. On a personal note, as a former Senior Chief Petty Officer in the Navy, I experienced first the need for an app of this nature and couldn’t have been more excited to partner with Jason and Straxis on this.
Jason: For Straxis, it was a natural progression to make security measures more accessible and efficient for end users, particularly within the military.
How do your roles work together to facilitate this integration?
Alex: As a Senior Solutions Engineer for Yubico, I engage with various DOD customers and agencies, identifying their challenges on a daily basis. Hearing these issues firsthand allowed us to develop solutions tailored to their needs. Straxis’ expertise in mobile application development was crucial in making this integration user-friendly.
Jason: It was straightforward to collaborate with Alex. Our goal was to drive traffic to applications like AF Connect and Marine Reserve Connect, providing a seamless experience for our users. The partnership with Yubico has been mutually beneficial, leveraging their hardware solutions with our software to enhance overall functionality.
Government agencies are quite different from other kinds of organizations and enterprises when it comes to security requirements and needs. What challenges around cybersecurity were the DoD facing, especially regarding remote work for Air Force members?
Alex Antrim: I’ve been in Federal Security for almost 15 years now and cybersecurity is not supposed to be limiting. It’s actually supposed to enhance and allow collaborative environments to really flourish. That was apparent in modern mobile phone operating systems. In working with Straxis, we were able to meet the cybersecurity requirements from the US government and from the DOD while still making it easier to access the data, there is no introduced risk. There is no data loss and we are confident that the DOD’s data stays where it’s supposed to stay, but it’s still able to be accessed by service members with DOD credentials with their YubiKey and a properly secured configured application.
Jason: The biggest challenge was that new capabilities were being made available to service members online, but it was only easily accessible on desktops. We know at times It can be challenging to access resources meant for desktops and the YubiKey can close that gap, making it accessible to everyone.
How did the creation of MilSecure Mobile address these challenges?
Alex: We were able to take what we learned with previous apps that had Smart Card authentication with our Yubico Authenticator, and built it directly into MilSecure Mobile. Another exciting feature is the dynamic bookmarking system, making it easier for service members to access essential sites. This system, combined with YubiKey’s secure authentication, ensures quick and secure access to DOD resources for service members.
Near Field Communication (NFC) is also something new that we’re excited to introduce – allowing security accessible with the tap of a YubiKey. Straxis was able to leverage the NFC technology with the YubiKeys for an even more seamless end-user experience.
As government cybersecurity mandates around phishing-resistant multi-factor authentication continue being implemented, how do hardware security keys like the YubiKey help government agencies tackle requirements while achieving Zero Trust and modern passwordless authentication goals?
Alex: YubiKeys have always been a robust and flexible security token because it can solve many different use cases with one token. We hope to see FIDO2 on the horizon, and I look forward to seeing where we can take it further in a mobile application with Straxis.
Jason: The YubiKey simplifies the authentication process, making it seamless and user-friendly. It addresses the need for secure, mobile-friendly solutions, especially for tasks that don’t require full-scale desktop capabilities but still need secure access, such as checking emails or signing documents.
What future plans does Straxis have to address challenges the government agencies are facing around cybersecurity?
Jason: It’s exciting to be involved with a technology like the YubiKey which supports many different protocols. The way the token is structured and the way we’ve partnered with Yubico’s integration leaves any type of change to be grown in the future. Having a partner like Yubico is invaluable because that means whatever the DOD comes out with in terms of authentication or security, we’ll be able to provide a solution.
Alex: I’m most excited for MilSecure Mobile to be turned on in already existing apps in the DOD space, starting with Air Force Connect. But there are many other branches and services that we can see adopt Straxis’ applications in the future. We hope the partnership and the app speak for themselves when they’re in the hands of service members.
For more information, see the press release here. iOS app can be downloaded here and will be coming soon to Android.
The post Securing mobile web app browsing for the U.S. military: Q&A with Jason Christensen and Alex Antrim appeared first on Yubico.
—————-
VaultumCity is the best trusted place to select and buy your best Yubikeys, Vaultumcity free ship all yubikeys, Vaultumcity is reseller distributor of yubikeys so you can find cheapest best yubikey in Vaultumcity. If you are looking for best Yubikeys in Singapore at VaultumCity website online store.
The shop that sells yubikeys is https://vaultumcity.com/product-category/yubikey/
Our delivers are from Singapore, distribute globally. Buying Yubikey in Vaultum to have best customer and after sales services. All Yubikeys sold at Vaultumcity are quality guaranteed. Please place a large amount order to have great discount for reseller. Contact Vaultumcity at https://vaultumcity.com/contact/ whenever you have any issue with your yubikeys. Buying yubikeys at Vaultumcity to have best newest yubikeys free shipped to your door, FIDO2 U2F SECURITY KEY C NFC, FIDO2 U2F SECURITY KEY NFC, YubiKey 5 Nano, YUBIKEY 5 NFC, YubiKey 5C, YubiKey 5C nano, YubiKey 5C NFC, YUBIKEY 5Ci, YubiKey Bio – FIDO Edition. Yubikeys are best most secure tools for two-factor authentication. You can also buy yubikeys form Malaysia, Yubikey Malaysia is being sold at Vaultumcity with great price and free ship, you have it fastest, just in few days because we’re here in Singapore.
If you are looking for yubikeys in Indonesia, Vaultumcity is a great place to buy yubikey Indonesia, you can have yubikeys to protect your logins in just few days. Vaultumcity ship your yubikeys to your home in Thailand, to help ensure your data is safe and secured.
What about South Korea, Vaultumcity bring your yubikeys to your home in South Korea free-shipped.
Vaultumcity also delivers yubikeys to Japan, any province or city to your hands. Check out and grab your best suited yubikey today at VaultumCity.
Disclaimer: This article is sourced from the official Yubico website. As official partners of Yubico, we have obtained permission to utilize both articles & resources for further updates with regards to Yubico’s products.
