Descope emerged from stealth on Wednesday with a frictionless, safe, and developer-friendly authentication and consumer administration service.
There is at all times a degree in utility improvement when a choice must be made, to both construct consumer authentication in-house or use another person’s. It’s not a one-time determination, both, since consumer authentication is extra than simply organising a username and password. There must be a course of for password resets, a manner so as to add layers of authentication, a mechanism to securely retailer credentials, and controls to detect and forestall fraud and bots. All that comes earlier than determining consumer provisioning, tackling entry management, and even incorporating single sign-on.
“Authentication is rarely completed for any utility,” wrote Slavik Markovich, co-founder and CEO of Descope.
Descope’s core premise relies on a easy truth: builders shouldn’t be spending time and sources on authentication and consumer administration if that’s not the core a part of the service they’re constructing. With Descope’s authentication consumer administration platform, builders can create authentication flows, add passwordless authentication strategies to their functions, handle entry privileges and identities, and implement safety controls to forestall account takeovers and different sorts of fraud – they usually do not should be safety consultants to have these capabilities.
“Authentication is too important to be done incorrectly, but it’s also too complicated and time-consuming to be done in-house by engineering teams,” Guru Chahal, a companion at Lightspeed Venture Partners, mentioned in a press release.
Identity-based assaults are on the rise, which has renewed curiosity in passwordless applied sciences. The Verizon Data Breach Investigations Report discovered that 80% of fundamental internet utility assaults will be attributed to stolen credentials. Google and Apple have rolled out passkeys to section out passwords and open requirements like FIDO2 and WebAuthn make it simpler for customers to depend on their gadgets as an authentication issue. Descope’s passwordless know-how stack means organizations could make that shift to ship a passwordless expertise to customers.
“Our imaginative and prescient is to “de-scope” authentication from each app developer’s each day work, to allow them to give attention to business-critical initiatives with out worrying about constructing, sustaining, or updating authentication,” Markovich mentioned.
The platform helps several types of builders, together with those that choose no-code/low-code instruments, depend on software program improvement kits (SDKs), or choose working with APIs. Developers can use the Descope platform with out cost for as much as 7,500 month-to-month energetic customers for business-to-consumer (b2c) functions and as much as 50 tenants for business-to-business (b2b) functions.
Descope has raised $53 million in seed funding, the corporate mentioned. The founding workforce has labored collectively for years, at safety orchestration, automation, and response startup Demisto, which was acquired by Palo Alto Networks in 2019, and database safety firm Sentrigo, which was acquired by McAfee in 2011.