Platform
HYPR Identity Assurance Platform
Complete identity security solution that creates trust in the identity lifecycle

HYPR Authenticate: Passwordless MFA
Phishing-resistant FIDO passkeys-based security

HYPR Adapt: Risk Policy & Orchestration
Comprehensive identity risk engine and adaptive authentication

HYPR Affirm: Identity Verification
Identity proofing and verification built for the enterprise

Key Integrations

Entra ID (Azure)

Okta

Ping

CrowdStrike

Idemia

Yubico

SSH & Linux

ForgeRock

SiteMinder

Citrix

OneLogin

See All Integrations

HYPR Enterprise Passkeys
Integrate proven FIDO2 phishing-resistant passwordless authentication with your IAM environments
Solutions
Industry

Financial Services

Critical Infrastructure

Energy

Retail & Hospitality

Business Initiative

Modernize User Experience
Boost productivity, satisfaction and engagement for workforce and customers

AI Attack Prevention
Thwart generative AI attacks against your business

Workforce Identity Security & KYE
Improve workforce security & Know Your Employee

Deploy Passkeys
Find the right next-gen passkeys for your business

Accelerate Compliance
Meet regulatory requirements without disrupting user experience

Call Center Verification
Improve verification of employees and customers

Zero Trust Authentication
Stop credential-based attacks with a Zero Trust identity approach

The Total Economic Impact™ of HYPR
Forrester Consulting calculates that HYPR customers save millions of dollars, with a 324% ROI
Resources
Resource Center
Learn about IAM security, passkeys and passwordless authentication technology

Customer Stories

Reports and Guides

Passkey Resources

Videos

State of Passwordless Security

See All Resources

Additional Resources

Blog

Definitive Passwordless Guide

Security Encyclopedia

How HYPR Passwordless Works
How HYPR Authenticate passwordless MFA works

Support Center
Support help, setup guides, developer documentation and more

Documentation

API Reference

Knowledge Base

System Status

Get Support

User Guide
Company
About HYPR
HYPR creates trust in the identity lifecycle

Careers

News

Events

Security & Certifications

Contact Us

Partner Program

Become a Partner

State of Passwordless Security Report
The third annual edition investigates top attack vectors, the greatest security gaps, and the impact of passwordless authentication
Pricing
icon-search
Get a Demo

Encyclopedia Trust On First Use (TOFU)

Trust On First Use (TOFU)

Trust On First Use (TOFU) is a security arrangement that pertains to when a device is connecting to a server it has not before, one for which no earlier trust relationship exists. The device connects to the server with or without prompting the user.

Under TOFU, also called Trust Upon First Use (TUFU), a trust relationship is established between the device and server from that point forward. Subsequent connections to a different server yield “new connection warning” user prompts.

That a user must validate the new connection each time is both a strength and drawback to TOFU. The prompts adds visibility concerning the establishment of a new truest relationship, and diverging from it. However, this is not scaleable for large systems with many endpoints.

Example:

"With TOFU, we're able to access a device when first using it, streamlining onboarding and other activities. But, since when accessing subsequent devices the new prompts — one each time! — make using TOFU unrealistic and a bit of a nuisance."

A B C D E F G H I K L M N O P Q R S T U V W Z

Popular Pages

Identity Verification Identity Assurance Rainbow Table Attack Keylogger

Share This Post

New call-to-action