security

1Password announced Extended Device Compliance at RSAC 2025, enhancing Device Trust by enforcing device posture checks for accessing web applications beyond SSO, addressing the Access-Trust Gap created by unmanaged devices and apps. This integrated solution allows real-time device health checks via the browser, ensuring security policies are applied across various applications without complicating workflows. Key features include centralized app discovery, compliance enforcement, user-guided remediation, and seamless re-access post-compliance. Available in Device Trust Core and Device Trust Connect versions, it offers comprehensive protection for both SSO-dependent and non-SSO environments.

https://blog.1password.com/enforce-device-posture-beyond-sso-with-extended-device-compliance/

Shadow IT poses increasing security risks as employees use unauthorized SaaS applications. Key statistics show that 1 in 3 breaches involve shadow IT, and organizations lacking central management are five times more likely to face cyber incidents. Traditional identity management tools can't track unsanctioned applications, leaving organizations vulnerable. 1Password's Extended Access Management addresses these challenges by providing visibility into all apps, ensuring compliance, empowering employees, and automating security processes. Continuous monitoring and automated workflows help manage risks and audit trails support compliance. Understanding and mitigating shadow IT with this tool is essential for organizational security.

https://blog.1password.com/discover-and-secure-shadow-it-with-1password-extended-access-management/

SSO solutions simplify access to applications via single login, reducing security risks. However, modern work patterns and SaaS usage create challenges, leading to the “Access-Trust Gap.” Many apps remain unmanaged due to SSO costs, integration issues, and shadow IT, making widespread adoption impractical, especially for SMBs. SSO's limitations necessitate complementary solutions, like Extended Access Management (XAM), which offer comprehensive security for all app access. Effective application management and spend optimization are crucial for mitigating risks and controlling costs in today's decentralized workplace.

https://blog.1password.com/sso-isnt-complete-solution-for-saas-access-management/

RSAC 2025 showcased critical cybersecurity innovations focusing on risks from unfederated identities and unmanaged devices. 1Password highlighted its Extended Access Management solutions for secure sign-ins across devices without hindering productivity. The event featured customer engagement, insightful sessions on security challenges, and collaborations, including discussions on agentic AI risks. Key updates were announced, including features for device compliance and access governance. Overall, 1Password reinforced its commitment to enhancing security in evolving digital landscapes.

https://blog.1password.com/rsac-2025-recap-with-1password/

1Password introduces three admin features for easier large-scale deployment: a redesigned admin sidebar for improved navigation, a new adoption report to track browser extension usage, and enhanced SCIM setup guidance to assist users during account confirmation. Additionally, bulk user invitation management tools streamline onboarding. These updates aim to reduce friction, enhance security, and promote smoother user experiences.

https://blog.1password.com/epm-q2-2025-admin-features/

Omdia released a report on “Extended Access Management (XAM),” addressing modern workforce access management challenges such as app, device, and identity sprawl. It emphasizes the security risks of unmanaged access and outlines XAM's role in closing the “Access-Trust Gap.” The report highlights the necessity for organizations to transition to passwordless environments, citing their risks and costs. While achieving full passwordlessness takes time, the journey involves improving authentication security. 1Password's XAM helps visibility, risk oversight, credential management, and application risk assessments to facilitate this transition. For detailed insights, refer to Omdia's complete report.

https://blog.1password.com/omdia-recommends-extended-access-management-for-passwordless/