DOT Pushes Toward Passwordless Future as Zero-Trust Matures

Austin Clark, Enterprise Security Architect, DOT

The Transportation Department is advancing passwordless authentication as part of its broader cybersecurity modernization strategy, according to Enterprise Security Architect Austin Clark. Speaking with GovCIO Media & Research at Federal Tech Leaders 2026, Clark discussed how the department is strengthening its zero-trust architecture while improving the user experience.

Clark said federal agencies across government are moving toward passwordless authentication and that DOT is at a mature stage of its transition. The department has implemented certificate-based access and is retiring Active Directory Federation Services (ADFS) as it prepares for Microsoft’s eventual end of support for the platform. The integration allows employees to access Microsoft 365 directly using their Personal Identity Verification cards.

While the technology is in place, Clark said achieving true resilience requires planning for edge cases, such as onboarding employees before they receive a PIV card or accommodating users with expired credentials. DOT continues to refine those processes as it expands passwordless access across the department.

Despite the challenges, Clark said user feedback has been overwhelmingly positive. Passwordless authentication has improved both security and convenience, creating what he described as a rare cybersecurity “win-win” where stronger protections also deliver a better user experience.