The rapid growth of connected devices has made lifecycle security one of the hardest challenges for organisations to manage. As IoT devices continues to proliferate across industries, organizations are increasingly challenged to secure, monitor, and manage these assets throughout their entire lifecycle. According to Device Authority, one-third of data breaches now involve an IoT device, and over 50% of devices contain critical vulnerabilities that attackers can easily exploit .

As environments become more decentralised and harder to oversee, organisations need automated identity, visibility, and policy control to manage device trust at scale. The rapid adoption of IoT technologies across sectors means organizations must maximize their IoT investments while maintaining strict security standards to protect their business operations.

KeyScaler 2025 has been designed exactly for this moment. Complete visibility into all devices and network traffic is now essential for business resilience and regulatory compliance.

The newest iteration of Device Authority’s award-winning IoT Identity and Access Management platform introduces deep AI-supported automation, agentless discovery, and a more streamlined approach to Zero Trust for unmanaged and legacy devices.

This article breaks down every major enhancement — and what they mean for security leaders in 2025 and beyond.

What Is KeyScaler 2025?

Device Authority’s KeyScaler 2025 is the latest evolution of its IoT identity security platform. It focuses on solving the biggest challenges CISOs now face:

• Visibility of unmanaged and agentless devices
• Eliminating manual identity provisioning
• Policy-driven trust for OT, medical, and automotive environments
• Meeting new regulatory requirements such as NIST, CRA, and EO 14028
• Adhering to evolving security standards across diverse systems and device manufacturers
• Enforcing Zero Trust “from chip to cloud”

The 2025 update delivers a more automated, integrated, and AI-driven platform with a unified experience across KeyScaler and KeyScaler-as-a-Service (KSaaS). KeyScaler 2025 supports integration with a wide range of systems and enables close collaboration with device manufacturers to ensure secure device lifecycle management and compliance with security standards.

What’s New in KeyScaler 2025?

1. AI-Supported Automation Across the Platform

The biggest leap in KeyScaler 2025 is the introduction of AI that automates repetitive, risk-sensitive processes across the entire device lifecycle.

New capabilities include:

• Automated risk scoring of devices
• Intelligent anomaly detection
• Automated certificate lifecycle orchestration
• Automated response workflows for non-compliant devices
• Automated software and firmware updates to maintain device security and compliance through regular updates.

AI underpins discovery, onboarding, monitoring, and rotation — reducing manual burden while increasing accuracy and speed of device trust decisions.

Result:Organisations gain consistent Zero Trust enforcement without operational overhead.

2. Streamlined Lifecycle Management for Unmanaged Devices

Unmanaged devices remain one of the largest blind spots in enterprise security. KeyScaler 2025 introduces simplified onboarding and lifecycle operations specifically for:

• Vendor-locked devices
• Legacy devices
• Industrial OT assets
• Medical equipment
• Devices without agent support

The update supports agentless identity assignment, enabling organisations to bring unmanaged devices under policy control in minutes. This approach enhances protection for remote and hard-to-reach devices by ensuring secure access, robust authentication, and comprehensive security controls even in distributed environments.

3. Enhanced Discovery Tool: Agentless Visibility & Risk Analysis

The built-in Discovery Tool has been upgraded to provide:

• Full network scans for connected devices
• Identification of device manufacturer, firmware, capabilities, and vulnerabilities
• Automated compliance checks
• One-click onboarding into KeyScaler

As highlighted in the July newsletter, the tool now reveals potential risks and seamlessly onboards devices into a Zero Trust environment through automated certificate and policy management. By delivering complete visibility into network traffic, organizations can solve complex security challenges, identify emerging threats, and ensure robust protection across their IoT infrastructure.

This is essential because most organisations underestimate the size and risk posture of their device estate.

Device visibility is no longer optional — it’s the foundation of IoT security.

4. Unified Zero Trust Controls for IoT, OT, and Edge

KeyScaler 2025 deepens its alignment with Zero Trust architectures by:

• Enforcing identity-based access for all device transactions
• Applying real-time policy checks
• Rejecting access from unverified, outdated, or non-compliant devices
• Providing continuous authentication and autorotation of credentials

This ensures trust is continuously evaluated — not just at onboarding. Implementing Zero Trust controls means adapting security measures to the context of each device and its users, ensuring that only authorized users and devices can access critical resources.

5. Modernised PKI for IoT at Scale

PKI remains at the heart of IoT trust, but legacy PKI workflows often break at scale. KeyScaler 2025 introduces:

• Automated certificate issuance and renewal
• Secure authentication of devices and servers through strong encryption and certificate management.
• Granular policy enforcement
• Standards-aligned cryptography
• Support for automotive, medical, and industrial ecosystems

This reduces certificate failures and prevents the widespread outages caused by expired or misconfigured PKI. The platform helps create and manage encryption certificates to ensure the integrity of device communications.

6. Alignment with Global 2025 Regulations

The platform now maps directly to requirements in:

• NIST IoT & NIST 1800 series
• Cyber Resilience Act (CRA)
• Executive Order 14028
• UNECE WP.29 and global automotive regulations

This is crucial as regulators increasingly demand visibility, identity-based control, and automated lifecycle management.

Why KeyScaler 2025 Matters Right Now

Security leaders face unprecedented pressure in 2025:

1. IoT environments are expanding faster than teams can manage

With millions of machine identities requiring trust, authentication, and continual validation, manual methods simply cannot keep pace.

2. Unmanaged devices are a massive blind spot

Attackers exploit outdated firmware, weak credentials, and unmonitored devices more than ever.

3. Compliance demands are becoming stricter

NIST, CRA, and sector-specific regulations require automated controls that can be proven.

4. Zero Trust is becoming the baseline

Device identity is now a mandatory foundation of Zero Trust adoption.

KeyScaler 2025 provides a platform that matches these demands — removing complexity while strengthening security.

How KeyScaler 2025 Strengthens Enterprise IoT Security

How KeyScaler 2025 Solves It: The platform provides a comprehensive solution to solve the most pressing IoT device lifecycle management challenges, streamlining deployment, monitoring, and retirement across complex device ecosystems.

Use Cases Across Key Industries

Automotive

Secure ECU identities, comply with WP.29, and automate OTA update trust chains. KeyScaler 2025 supports secure device management throughout the manufacturing process, addresses unique protocols used in automotive systems, and ensures secure data transfer through gateways.

Healthcare

Onboard and monitor legacy medical devices and reduce patient safety risk. Adhering to security standards helps protect sensitive data transmitted or stored on these devices, ensuring regulatory compliance and safeguarding patient information. This not only prevents data breaches but also enhances the experience for healthcare customers by maintaining trust and reliability.

Industrial OT & Critical Infrastructure

Secure agentless PLCs, sensors, and controllers without interrupting operations. KeyScaler 2025 enables organizations to manage diverse systems—including industrial control systems (ICS), OT, and IIoT devices—by securing communication protocols and proactively mitigating security threats across industrial environments. For a practical example of this technology in action, see how the Advanced Manufacturing Research Centre (AMRC) Secure Smart Factory Demonstrator leverages KeyScaler™ to protect industrial IoT devices and manufacturing data.

Energy & Utilities

Improve resilience across distributed assets such as smart meters and grid equipment. The platform provides visibility into both wired and wireless smart devices to protect critical infrastructure.

KeyScaler vs KeyScaler 2025: What’s Improved?

Getting Started with KeyScaler 2025

Organisations can adopt KeyScaler 2025 via:

• KeyScaler on-premises
• KeyScaler-as-a-Service (KSaaS)
• Hybrid deployments
• Pilot programmes focused on discovery or PKI modernisation

The recommended starting point is the Discovery Tool, enabling instant visibility into risks and device types across your estate.

Final Thoughts

KeyScaler 2025 is more than an update — it’s a shift towards fully automated, AI-driven device trust, purpose-built for the complexity of today’s IoT and OT environments.

By simplifying identity, automating trust, and aligning with emerging global regulations, it provides organisations with the foundation they need to secure connected ecosystems in 2025 and beyond.