Authentication for Enterprises

Smart and secure authentication with SpearID

Enable fast and secure access to all applications and resource for all users on any device, anywhere. SpearID Enterprise offers high-assurance authentication and single sign-on using zero trust and no passwords.

Close-up of a laptop keyboard and a black USB flash drive labeled "speed" on a white surface.

SpearID Enterprise is for everyone

Three men standing together indoors near a large sign for SPEAR innovations, dressed in business attire, with a brick wall and a whiteboard behind them.

For the Enterprise

SpearID Enterprise provides best return on security investment with unmatched protection of technology investment.

  • Zero Trust identity-based access to resources

  • The only truly effective technology to prevent account takeovers in all environments

  • No more calls for password reset to the help-desk

  • Super-fast and secure logins to workstations, cloud services, web and local applications, and even old legacy applications with no native support for strong authentication

Two women having a conversation in a modern office, one is holding a tablet and smiling at the other.

For Individuals

SpearID FIDO tokens are ready to use

  • Secure login to all popular services supporting FIDO or any other one-time password 2-factor authentication

  • Supported on all computers, internet browsers and smartphones

  • Intuitive and easy to use with great tutorials on all sites supporting FIDO or any other 2-factor authentication

Close-up of a person typing on a laptop keyboard, wearing a watch with Roman numerals on their left wrist, sitting at a wooden table.

For Developers

SpearID Enterprise provides simple integration with native support in most environments, open standards and interfaces, and free open-source tools readily available from Spear Innovations and the OS community:

  • Standardized technology based on PKI cryptography, PIV compatibility, FIDO and WebAuthn standards and One-Time Password technology

  • Access to documentation, software and developer support services

  • Technical support at all levels

SpearID FIDO Security Key

Ideal for enterprise users that require a security key for multi-factor authentication to local and cloud services. SpearID FIDO key supports FIDO2/WebAuth, FIDO U2F and OTP.

Get Started

Find the right SpearID solution

Check out the solution feature table to find the right secure authentication and login solution for you or your enterprise.

A black spearfishing dive computer with the brand name 'Speard`

“Just use it. Simple to add second-factor to any service by the user.

Two smartphones demonstrating digital security app processes: one shows successful authentication with a green checkmark and OK button, the other displays a progress screen for enrolling a device, with steps like processing, syncing, verifying, and generating certificates, over a circuit board patterned background.

SpearID Mobile

SpearID Mobile provides a simple and secure access to all corporate applications using a mobile authentication and user enrollment app. Uses phone’s bio-metric sensor and built-in phone security.

“Provides MFA/SSO solution to your company, with Mobile freedom.

Start using your SpearID authentication solution

Set up your SpearID Enterprise card, token or mobile app with the supported system, application or service you wish to secure.

A white key-shaped RFID card with a yellow fingerprint symbol and the brand name 'SFEAR' placed on a white credit card with a gold chip, all set against a black background.

SpearID Smartcard & Token

SpearID certificate-based PKI smartcards and tokens are ideally suited for enterprise environments that require secure access to on-prem, cloud or remote applications and resources.

“Provides hard-core security like no other solution.

Diagram showing a cloud labeled 'SpearID Cloud' connected to a hardware device labeled 'On-Prem'.

SpearID Enterprise SSO

Identity-driven secure access for the enterprise. It enables access to on-premises & cloud applications from private or shared workstations, including legacy applications.

“Most comprehensive solution for Single Sign-On supporting Zero Trust.

What is SpearID Enterprise?

SpearID Enterprise is the most comprehensive hardware-backed security authentication solution

The SpearID Enterprise authentication solutions eliminate account takeovers and eases the burden of managing and using strong security mechanisms to protect access to resources on local, cloud and web-based, modern and legacy systems. SpearID Enterprise authentication solutions provides a range of authentication methods including strong two-factor, multi-factor and passwordless authentication - using a smartphone app, security key or a smartcard badge. It is effectively protecting users, applications and enterprise resources from attacks.

Map with an orange location marker showing a pin point

Only the Strongest Security

SpearID Enterprise in a All-in-one secure authentication solution that provides the strongest security for user authentication and login, in all environments.

Orange map pin marker with black center

Support of all Applications

SpearID Enterprise authentication solutions supports Windows, Mac and Linux logins, all FIDO enabled cloud services such as Gmail, M365, Dropbox, Facebook, Salesforce, all One-Time Password 2-factor authentication enabled applications, and all PKI enabled systems such as Citrix, VMWare and end-point security applications.

Map pin icon with orange fill and black central circle.

Support all Use-Cases

SpearID Enterprise authentication solutions are perfect for covering all current and future use cases. SpearID Enterprise authentication solutions are also perfect for replacing all your current authentication devices, apps and solutions with a single, strong security solution that standardizes all security domains on the same high assurance level. All this without taking away anything from flexibility, ease-of-use or supported systems.

Enterprise environments

Blue diamond-shaped logo with interconnected white nodes and lines

Microsoft Active Directory and Azure Directory

Icon of a computer monitor and a smartphone with connecting arrows, representing screen mirroring or device synchronization.

Microsoft Intune

Microsoft Office 365 logo with orange icon and text

Microsoft O365

The Microsoft Windows 10 logo with four blue squares and the text 'Windows 10' below.
Black and white icon of a question mark inside a speech bubble.
Green Android robot logo with the word 'android' beneath it
Windows 11 logo with four blue squares and the text 'Windows 11' beside it.

Microsoft Windows 10 and 11

Linux logo featuring Tux the penguin, with the text 'Linux' next to it.

MacOS and Linux

A silhouette of a person running with a city skyline in the background.

Android and IOS

SpearID Integrates with all Enterprise Applications

Cloud Services

AWS logo with the word 'aws' and an orange arrow underneath

Amazon Web Services

Google logo with a colorful G design.

G Suite cloud

Salesforce logo with a blue cloud and white text.

SalesForce cloud

Citrix logo in black text on a white background
VMware logo in gray text on a white background.

Citrix and VMWare

Black and white BB logo with diagonal lines and stylized letter B
An abstract logo with a black background, featuring green and white intertwined shapes forming a stylized 'P' and 'L'.

Blackberry and Pulse Secure

Identity and Access Management

Fido Certified U2F logo indicating certification status

All FIDO2 and FIDO U2F supporting applications, services and browsers

All OTP (One-Time Password) supporting applications, services and systems (Time-based TOTP and Hash-based HOTP)

Okta logo with white text on a blue background.

Okta

Ping Identity logo with red background and white text

PingIdentity

Green background with white stylized text that appears to spell 'DUO'.

Duo

Black and white graphic of a cartoon-style angry face with a large eye, surrounded by multiple target-like circles with dots in the center.
An orange map pin icon with a black dot in the center.

Personalization and Delivery

SpearID Enterprise card personalization and secure delivery service

Map pin icon in orange and black

Security Key Fulfillment

SpearID Enterprise FIDO-PKI security key personalization and secure delivery service

Services

Enterprises can easily procure and distribute SpearID Enterprise authentication solutions for employees, partners and customers at scale and get expert support and consulting services to help ensure success.

A stylized orange map marker with a black dot in the center

SpearID Mobile as a Service

SpearID Mobile SaaS service

Contact sales for more information
A stylized orange map pin with a black center.

Professional Services

Spear Innovations provides professional services and technical support for our solutions and technologies both in English and Finnish

Mobile Authentication

Smart and secure authentication with SpearID

SpearID Mobile provides a simple and secure access to all corporate applications using a mobile authentication and user enrollment app. SpearID Mobile uses the bio-metric sensor on smartphone to log in.

SpearID Mobile is a all-in-one password-free authentication, single sign-on and identity platform for organizations. Designed to meet the security needs and standards of regulated industries, it offers a safer, quicker and easier way of logging in.

Request demo
A smartphone with a screen displaying a successful authentication message, surrounded by a pattern of interconnected hexagons resembling a blockchain or network design.
Orange map pin marker with a black dot in the center

1. No shared secrets

Passwords are shared secrets. SpearID Mobile creates a public/ private key pair and stores the private key in the secure hardware of the smartphone. Using public key cryptography, no one else has access to this key. The user alone has access to the private key using bio-metric identification.

Key Benefits of SpearID Mobile

A stylized map pin icon in orange with a black dot in the center.

2. Secure and fast IT experience

With password-free authentication, there are no passwords to remember or type in and, more importantly, none to forget or accidentally disclose. By removing passwords, SpearID Mobile removes stress, wasted time and the hackers’ #1 target.

A stylized map pin icon with an orange and black color scheme.

3. ROI in less than 3 months

The elimination of passwords improves efficiency and productivity so dramatically that customers will see a return on their investment in weeks, not years.

A stylized map marker icon in orange with a black circle in the center

4. Multiple deployment options

SpearID Mobile can be deployed on premises and in the cloud, or as a fully managed service (SaaS), providing the customer with the perfect model for each IT strategy.

Key Features of SpearID Mobile Authentication

The Standard for Secure Authentication

SpearID Mobile is a universal Multi-Factor Authentication app that replaces all dedicated or legacy MFA solutions for any application, service or IT system.

No Security Trade-offs with SpearID Mobile

SpearID Mobile is the only enterprise mobile authentication solution that provides the same high authentication assurance level as a smartcard security chip.

Secure Mobile Authentication to all Applications and Resources

SpearID Mobile provides a simple and secure passwordless access to all corporate applications using a mobile authentication and user enrollment app. SpearID Mobile uses the bio-metric sensor on smartphone to log in.

SpearID Mobile is a all-in-one password-free authentication, single sing-on and identity platform for organizations. Designed to meet the security needs and standards of regulated industries, it offers a safer, quicker and easier way of logging in. It combines the smooth usability of a mobile authentication app with strong hardware-based PKI security on the phone.

SpearID Mobile removes unnecessary complication related to strong user authentication, MFA and secure login to workstations, IT systems, cloud services and applications while keeping users safe from data breaches and the risks associated with passwords.

Strong Authentication with smartcards and tokens

Freedom to choose your form factor

The SpearID Enterprise authentication solutions eliminate account takeovers and ease the burden of managing and using strong security mechanisms to protect access to resources on local, cloud and web-based, modern and legacy systems. SpearID Enterprise cards and tokens provide strong multi-factor authentication without use of passwords.

Request demo
Two white credit cards and a push-to-talk stylus device with 'Speak' branding.

High Security

All SpearID Enterprise smartcards are based on dedicated smartcard security processors, designed to be physically and logically tamper resistant. SpearID Enterprise supports on-board key generation, cryptography, random number generation, and enforces PIN based two-factor authentication.

Get started

Multiple Use Cases

Different SpearID Enterprise smartcard versions offer different security certifications, supporting different customer requirements.

Deploy SpearID Enterprise smartcards using standard Microsoft Windows® environment. No specialized PIV Card Management Systems required.

SpearID supports a wide variety of deployment scenarios including central issuance and user self-enrollment.

Multiple Interfaces

Supports modern and trusted authentication protocols: PKI certificates and PIV-C

Supports physical and contactless interfaces, and mobile authentication: PKI/PIV-C, ISO(IEC 14443A RFID and optional physical access control credentials

Orange map pin icon with a black dot in the center

Windows Plug & Play

For end-users, SpearID supports the standard Windows® built-in PIV Smart Card Minidriver which means that no software installation is required for secure Windows® login. For the enterprise administrator, the smartcard Minidriver enables the use the standard Windows® Certificate Enrollment processes and tools. Organizations can instantly issue, manage and use the SpearID smartcards and tokens in Windows® environments without software installations or integrations. Linux and Mac are supported using totally free standard software.

Key Features

Map pin icon with an orange and black color scheme

Physical Access Security

Open doors and gates with physical access credentials on the SpearID Enterprise smartcard. The SpearID Enterprise cards supports different Proximity (125kHz Prox, 13,56 MHz MIFARE DESFire® and ISO/IEC 14443) in multiple data formats, which are widely used in physical access control systems across the world.

Close-up of an orange map pin marker with a black dot in the center.

Certificate-based Login

SpearID Enterprise enables secure storage of digital certificates and associated cryptographic keys issued by the enterprise organization or by a trust third-party Certificate Authority. Digital certificates support PKI applications like logon to Windows®, Citrix®, Bitlocker, SSH, electronic signing, data encryption or remote access using VPN, RDP and HTTPS.

Through the use of the PIV interface, SpearID Enterprise enables user support for applications on many different platforms.

Map pin icon in orange with a black center

PIV-Compatible

SpearID Enterprise is compatible with the FIPS 201 PIV Smart Card Standard. It implements NIST SP 800-73 Part 3, the PIV Card Command Interface and is a PIV-C (Compatible) smartcard designed for enterprise use. This makes it compatible with all PIV supporting applications and platforms available on the market. These include many end-point security solutions as well as legacy application that do not support other types of smartcard credentials.

SpearID Enterprise CBA

Microsoft Entra ID CBA (Certificate Based Authentication)

Allows users to authenticate directly with X.509 certificates for all Microsoft applications and browser sign-in cloud systems.

We provide the means to do this using:

  1. Physical Access Cards / ID Badges

  2. SpearID Mobile MFA application

  3. SpearID FIDO tokens

  4. SpearID BIO fingerprint smartcards

  • ✔ NO PASSWORDS

  • ✔ EU NIS2 Directive

compliant strong phishing-proof user authentication.

Request demo
A smartphone displaying a face recognition app, a Microsoft Entra ID logo, a black USB security key labeled 'Spear', and two security cards labeled 'Spear' and 'Spear BIO' on a yellow background.

User Fingerprint Biometric Authentication

SpearID® BIO is a biometric authentication solution for enterprises:

  1. Fingerprint authentication directly on the smartcard - No need for biometric fingerprint databases or AFIS systems.

  2. SpearID Mobile MFA application

  3. No battery - All functions and features are powered using the card reader transmitted current.

  4. Card authentication is successful only if the fingerprint authentication is successful.

Request demo
A graphic with black background displaying a white and colored logo for SpearID BIO, with text that reads 'Strong User Authentication with Biometrics'. A dark grey box contains white text listing different authentication methods: 1. Physical Access Control, 2. FIDO2 authentication, 3. Microsoft CBA authentication.

SpearID Enterprise PKI & FIDO2 Security Key

All-in-One Security Key

SpearID Enterprise FIDO-PKI combines both FIDO2 and PIV-C/PKI technology on the same security key.

Check our FIDO2 security key

Get a SpearID Enterprise Key Now

Single SpearID Enterprise FIDO-PKI security key pricing starts at 45 Euro / piece

Fast and Secure Authentication with SpearID Enterprise Token with FIDO2 and PKI

  • The SpearID Enterprise FIDO-PKI security key meets the highest level of assurance (AAL3) of the new NIST SP800-63B guidelines.

  • Suitable for large and mid-size enterprises, including all regulated industries (banking, healthcare, government)

  • Support for advanced PKI credential and token management using Windows Active Directory and third-party credential and token management systems with Microsoft mini driver card support

  • Supports all high security assurance authentication protocols: PKI certificates, FIDO2/WebAuthn and PIV-C

  • Supports physical and contactless interfaces: PKI/PIV-C, USB, NFC and RFID for physical access control systems (PACS)

Enterprise Single Sign-On

Zero-Trust Identity-based SSO

SpearID Enterprise SSO provides a strong identity-driven secure access for the enterprise. Supporting all FIDO2, PKI, CBA, PIV cards, tokens and keys - it enables fast and secure access to on-premises & cloud applications from private or shared workstations, including legacy applications.

Request demo
A black and white illustration of a cartoon bee holding a spear or arrow, standing on a rock.
An orange location pin with a black circle at the top center

SSO to all applications

SpearID Enterprise SSO enables fast and secure access to on-premises and cloud applications from private or shared workstations to support hybrid IT environments. With seamless access into cloud applications and deep integrations into on-premises applications, including legacy applications, organizations have multiple ways of delivering single sign-on from any device and any location.

Key Features

Orange map pin icon with black center

No Click Access

SpearID Enterprise SSO provides strong authentication to enable access to desktops and applications with bio-metric identification on the smartphone.

The use of the secure chip within the mobile provides robust high-assurance security and meets the most stringent security policies and controls. Organizations own cryptography and keys.

Orange and black map pin icon with a tear in the right side

Zero-Trust

SpearID Enterprise SSO provides identity-driven secure mobile access for the enterprise using a Zero-Trust model.

The SpearID Enterprise SSO is a secure mobile web browser that can handle digital identities, authentication and SSO. It supports certificate-based authentication, Mutual TLS and Kerberos.

SpearID Enterprise SSO

Secure Mobile Single Sign-On to Any Application, in Any Environment

The SpearID Enterprise SSO is a secure mobile web browser that can handle digital identities, authentication and SSO. It supports certificate-based authentication, Mutual TLS and Kerberos. Provisioning users to the SpearID Enterprise SSO secure browser is simple and could use existing organization processes for on-boarding. An SpearID Enterprise SSO enrolled device employs its hardware-backed security and key management to ensure that when the user uses the secure browser, any websites requiring authentication will be handled by the browser and will not require a password from the user.

The use of the secure chip within the mobile provides robust high-assurance security and meets the most stringent security policies and controls. Organizations own cryptography and keys. The SpearID Enterprise SSO Secure Access Gateway (SSOSAG) will provide a point to where the mobile browser will connect within the internal network. The SSOSAG will perform DNS lookups for inbound web traffic from mobile. SpearID Enterprise SSO leverages Azure and enables an organization to manage SpearID Enterprise SSO secure mobile browser via Intune.

What is SpearID Enterprise Single Sing-On?

A man in business attire sitting at a white desk, using a laptop, and holding a ceramic mug in an office or conference room with wooden blinds and a brick wall background.

Authenticate Only Once

Enterprise Single sign-on (SSO) technology helps to address identity management and user authentication challenges in enterprise IT environments that are not addressed by cross-domain Federated Single sign-on solutions.

The SpearID Enterprise SSO allows users to sign in using strong authentication only once and have access to all of their authorized applications without keeping track of multiple passwords, regardless of whether the applications support identity federation, enterprise trust or strong authentication. The SpearID Enterprise SSO solution streamlines and strengthens the security of access while improving user productivity. SpearID Enterprise SSO is the ultimate solution for switching from the use of passwords altogether.

Usability and Convenience Meets Security

In most enterprise IT environments where applications and systems are delivered using different platforms (on-prem Windows AD, cloud and legacy applications) SpearID Enterprise SSO offers an increase in productivity and in time savings while it helps organizations to drastically reduce security threats resulting in data breaches.

SpearID Enterprise SSO contributes to a better usability of passwordless strong authentication by providing users with a fast and convenient way to login to all IT systems and applications. Better usability also means fasted adoption and the disappearance of dangerous "work-arounds" users are tempted to resort to if the login processes are complicated.

Two men having a discussion at a table, one showing a card to the other, with a poster about security keys and authentication in the background.