Beyond the CAC: Navigating the DoD’s Approval of Non-PKI MFA

By signing up you will receive marketing emails from Yubico for security products and services; unsubscribe here or via a link in the email anytime and free of charge.

For decades, the Common Access Card (CAC) and Public Key Infrastructure (PKI) have been the gold standard for DoD identity. However, the modern battlefield—characterized by mobile devices, cloud-native environments, and "Bring Your Own Approved Device" (BYOAD) policies—requires more flexibility. Following the recent DoD CIO memorandum approving non-PKI Multi-Factor Authentication (MFA), the department has signaled a historic shift.

This webinar explores why the DoD is integrating FIDO2 passkeys on FIPS-validated YubiKeys to supplement traditional PKI. We will discuss the policy drivers behind this move, the specific "approved use cases" outlined in the new memo, and how this evolution strengthens the DoD’s Zero Trust architecture by providing phishing-resistant authentication where traditional smart cards fall short.