CrowdStrike Expands Identity Leadership with OpenID and IDPro

CrowdStrike has joined the OpenID Foundation as a Sustaining Corporate Member, its highest level of membership, and is also now a member of IDPro. Together, these commitments reflect a focused effort to help shape the future of identity-first security through both standards leadership and real-world deployment and a shift beyond static authentication toward more dynamic, interoperable, and effective identity security. This builds on CrowdStrike’s February 2026 acquisition of SGNL, which was already an active contributor to the OpenID ecosystem.

Identity has become the control plane for modern security, but the way it’s been implemented hasn’t kept up with modern threats. Most systems still rely on one-time authentication and long-lived access, creating standing privileges that persist long after risk conditions change. This gap leaves organizations exposed. That’s where open standards come in.

Open Standards Enable Continuous, Context-Driven Identity 

Modern identity decisions depend on context. What should this user be allowed to access right now? Has their device posture changed? Is their behavior consistent with normal activity? The answers rarely live in one place. They’re spread across endpoints, identity providers, SaaS platforms, and security tools.

Without a common way to share this information, organizations stitch together proprietary integrations. This leads to fragmented visibility, delayed response, and persistent access that doesn’t reflect current risk. Attackers target these security gaps.

Open standards address this by creating a consistent way to share identity and security signals across systems. They allow technologies from different vendors to work together without custom integration, which makes it possible to enforce identity security policies across the environment.

Open standards like the OpenID Shared Signals Framework (SSF) and the Continuous Access Evaluation Profile (CAEP) are central to this shift. They enable systems to exchange signals as events happen, so identity decisions can continuously adapt to changing conditions. This moves organizations toward a standard model where access is continuously evaluated and refined.

How the Falcon Platform Uses Open Standards

The CrowdStrike Falcon® platform generates high-fidelity security and device intelligence, including signals about endpoint posture, user behavior, and active threats. While these signals are valuable on their own, their impact grows when they can be shared across the broader identity ecosystem.

Using standards like CAEP, CrowdStrike can communicate security events to other systems as they occur. For example, if the Falcon platform detects suspicious activity on a device, the signal can be shared immediately with identity providers or access control systems. Those systems can then adjust access in real time, helping reduce risk without waiting for a user to log in again.

This directly connects threat detection to identity enforcement. It helps ensure access is continuously aligned with current conditions, which reduces reliance on standing privileges and limits the window of opportunity for attackers.

In order to have an impact, standards must be implemented, tested, and adopted across the ecosystem. That’s why CrowdStrike’s role goes beyond the OpenID Foundation. 

Through its work with IDPro, CrowdStrike engages directly with the global community of identity practitioners who design and operate identity systems. This helps ensure emerging standards are practical, usable, and ready for real-world deployment.

CrowdStrike is also driving adoption through practical tools and ecosystem engagement. We operate the caep.dev platform, which gives developers a way to test CAEP implementations and build transmitters and receivers using open source components.

These efforts have helped accelerate adoption across the industry. Leading technology providers, including Apple, Google, IBM, Jamf, Okta, and SailPoint, are adopting these standards, helping create a more connected and interoperable identity landscape.

Shaping the Future of Identity Security

CrowdStrike is an active contributor to multiple OpenID working groups, including Shared Signals and AuthZen, and the OpenID AI and Identity Management community group. As a Sustaining Member, CrowdStrike is taking a more direct role in helping guide the foundation’s priorities and the evolution of identity standards.

This reflects a broader shift in how security works. Identity is a continuous process that adapts as conditions change. This requires signals to move across systems without friction, decisions to reflect real-time context, and controls to be enforced consistently across environments.

Open standards form the foundation for identity-first security that is dynamic, interoperable, and resilient. CrowdStrike is both supporting these standards and helping shape how they evolve and ensuring they work in practice. This is the foundation of our vision for next-gen identity security, where identity decisions are continuously informed by real-time signals across the environment.

By combining real-time security intelligence, active standards leadership, and deep support for the practitioner community, CrowdStrike is helping shape the future of modern identity security.

Additional Resources

• Learn about what industry analysts are saying about CrowdStrike’s identity security solutions.
• Download the white paper Privileged Access to the Cloud: Why Privileged Access Management (PAM) Fails You.
• Be part of Fal.Con 2026 and connect with 10,000+ cybersecurity professionals shaping the future of the industry.