About Affirmed Identity
Building the security infrastructure that the age of continuous authentication demands.
Who We Are
Affirmed Identity LLC is an identity security company focused on a specific and critical problem: authentication is a moment in time, but security must last the entire session. We build the infrastructure that makes continuous authentication practical, deployable, and auditable for organizations of every size.
Our flagship product, Pulse CA, is a complete continuous authentication framework — not a collection of bolted-together point solutions, but an integrated system designed from the ground up so that every component knows its role in the session lifecycle. The Auth app, cloud PDP, and OIDC/SAML provider were built to work together, and it shows in how they perform together.
Our Founding Perspective
The inspiration for Affirmed Identity came from a hard lesson: a cyber-attack in 2000 that resulted in significant personal and business losses. That experience — and the years of formal cybersecurity training, independent research, and patent work that followed — shaped a foundational conviction: the way the industry thinks about authentication is fundamentally incomplete.
Logging in is not the same as being secure. The session that follows login is where the real exposure lives, and it is where attackers increasingly focus. OAuth consent phishing, session hijacking, credential theft mid-session — these attacks succeed precisely because most authentication systems stop caring the moment the login ceremony ends.
We built Pulse CA to close that gap.
What We Build
AffirmedID Pulse
A privacy-compliant Continuous Authentication app and cloud service for integration with Passkey, FIDO2, and Passwordless Push authentication.
AffirmedID Sentinel
A continuous active proximity detection and reporting service for installation on Windows, MacOS, and Linux access devices.
AffirmedID Connect
An OpenID Connect (OIDC) provider cloud service with integrated Policy Enforcement Point (PEP) and AuthZEN support.
AffirmedID Auth
An AAL3-compliant alternative Passkey (FIDO2) authenticator app for Android and iOS, designed for high-assurance environments.
Our Approach
We believe that security architecture should be honest about where the risks actually are. Passkeys and MFA are important advances — we support them and build on them. But they are point-in-time mechanisms, and the threats have moved beyond the login moment. Continuous Authentication is not a replacement for strong authentication; it is the extension of that assurance across the full session lifecycle.
We also believe that the security of AI agent systems depends on a principle that is easy to state but hard to implement: every agent, no matter how autonomous, has a traceable human origin. AuthZEN, combined with Continuous Authentication, gives that principle teeth — providing the policy enforcement layer that ensures agent actions remain within the scope authorized by the originating human, for as long as that human's trust remains valid.