January 9th, 2026

To:         VIP Authentication Hub Customers

From:     The Broadcom Identity Security Platform Product Team

Subject:  General Availability Announcement for Symantec Identity Security Platform 4.0

Broadcom is pleased to announce the release of Symantec Identity Security Platform (IDSP) 4.0, marking a significant milestone in the evolution of enterprise identity and access management. Formerly known as VIP Authentication Hub, the newly branded platform reflects five years of strategic innovation that has transformed a focused authentication solution into a comprehensive, cloud-native IAM platform built for modern zero trust architectures.

A Platform That Has Evolved Beyond Authentication

The rebrand to Symantec Identity Security Platform represents more than a name change—it signals the product's maturation from strong authentication capabilities into a complete identity security solution. Today's IDSP delivers passwordless authentication, advanced federation, OAuth resource management, policy-driven access controls, and comprehensive self-service capabilities, all through an API-first, container-based architecture designed for enterprise scale.

Key Features in Version 4.0

OAuth Resource Server Security
The new Resource Server application feature enables teams to define custom scopes, implement application roles for authorization, and manage user consent workflows—all from a centralized console. Expanding the existing enterprise-grade OAuth 2.0 capabilities within IDSP, developers gain the power to protect resources with industry-standard flows while administrators maintain unified control over API authorization policies across the entire application ecosystem.

Self-Service Console
IDSP 4.0 introduces a completely reimagined self-service experience that puts control directly in users' hands. The new application dashboard presents a personalized view of authorized applications with single sign-on support, while comprehensive security features allow users to manage sessions, review trusted devices, generate Personal Access Tokens, and control third-party app connections. Real-time notifications keep users informed, and multi-language support ensures global accessibility. For IT teams, this translates to dramatically reduced help desk volume and improved security posture through user-managed strong authentication.

Advanced Risk Management
The enhanced Risk Service delivers adaptive security that balances protection with user experience. Administrators can now configure risk policies directly from the Admin Console, setting application-specific thresholds and responses. New capabilities include device limit enforcement per user, enhanced behavioral analytics, and streamlined IP list management for allowed and risky addresses. The system evaluates authentication attempts in real-time based on device posture, geolocation, and behavior patterns—applying stricter controls for sensitive systems while streamlining access for trusted scenarios.

Passwordless Authentication with FIDO Attestation
IDSP 4.0 elevates passkey security with FIDO Metadata Attestation, enabling organizations to verify the authenticity of FIDO Alliance certified devices during registration. The platform now captures detailed authenticator information including device model, platform type, and browser details. Automatic passkey overwrite logic eliminates confusion from stale credentials, providing users with a seamless passwordless experience across desktop, mobile, and web applications.

Service Account Management
Organizations increasingly rely on service accounts for automated workflows, CI/CD pipelines, and system integrations. IDSP 4.0 brings service accounts out of the shadows with enhanced visibility and management capabilities. Administrators can now view, lock, unlock, and manage service accounts directly from the Admin Console, with clear identification of which accounts are designated for service-level use. New Service Account APIs enable end users to manage their own service accounts while providing administrators with comprehensive oversight. Managers can control service accounts for which they have been assigned, implementing proper segregation of duties and audit trails for compliance requirements.

Policy-Driven Recovery and Self-Service Flows
IDSP 4.0 introduces a more flexible approach to account recovery and self-service operations. Three pre-configured authentication policies now govern critical user actions: account activation (ActivateAccountPolicy), account unlocking (UnlockAccountPolicy), and password reset (ResetPasswordPolicy). This policy-based approach gives administrators granular control over the authentication requirements for recovery flows—enabling organizations to apply stronger verification for sensitive scenarios while streamlining trusted situations. Organizations can choose between the traditional Verified Credential approach, using email or SMS OTP, or the new policy-driven method, allowing security teams to align recovery processes with their overall authentication strategy and risk tolerance.

Built for Enterprise, Designed for Developers

The platform maintains its commitment to developer productivity with comprehensive REST APIs for every capability, dynamic client registration, and extensive documentation. Enhanced service account management provides better visibility and control for automated workflows, while OAuth mTLS support strengthens client authentication at critical endpoints.

For administrators, IDSP 4.0 expands granular role-based controls, enhanced compliance capabilities, and operational improvements including signing key grace periods that eliminate service disruptions during cryptographic rollovers.

Learn More about the Release

Review the complete Release Notes to learn more about all the features in this release.

Join us next week (Jan 15th at 11am ET) for an Office Hours session where we will explain and demonstrate some of these new features.

Register here to attend.

If you have any questions or require assistance please contact Broadcom Customer Care online at https://support.broadcom.com/web/ecx/software-contact-support . You can also call Broadcom Customer Care at +1-800-225-5224 in North America or see https://support.broadcom.com/web/ecx/software-contact-support for the local number in your country. 

Your success is very important to us, and we look forward to continuing our successful partnership with you.

To review Broadcom Support lifecycle policies, please review the Broadcom Support Policy and Terms located at: https://support.broadcom.com/.  

Thank you again for your business.