HomeGlossary › Device Trust Platform
Glossary

What is a Device Trust Platform?

A Device Trust Platform (DTP) continuously assesses the security configuration of every endpoint — laptop, server, BYOD — and represents that assessment as a signal other systems (identity, network, applications) can use as an access condition. Distinct from EDR (which responds to threats) and MDM (which controls devices).

The shape of the category

Three properties make something a Device Trust Platform rather than something else:

Where it sits in the security stack

What a DTP is not

Not EDR (no malware detection, no incident response). Not MDM (does not push policy or manage app delivery). Not a vulnerability scanner that requires authenticated remote access. Not a passwordless authenticator. Not a VPN.

What a DTP complements

Sits next to your EDR (CrowdStrike, Defender, SentinelOne), your MDM (Jamf, Intune, JumpCloud), and your identity provider (Okta, Azure AD, Google Workspace). Feeds the identity layer's Conditional Access with the posture signal that the identity layer cannot produce on its own.

How Lorika implements it

Lorika is a Device Trust Platform built around four principles: read-only observation (no remote control, no policy push), cross-platform parity (macOS, Windows, Linux treated equally from day one), continuous evidence (every check result written to an immutable audit log mapped to CIS / NIST / ISO 27001 / SOC 2 / PCI DSS controls), and privacy by default (the agent never reads file contents, browsing history, or application data). 190+ checks across eight categories, an installed-package CVE matcher against OSV.dev, and a 0–100 Security Score that any Conditional Access system can consume.

Related terms

Try a Device Trust Platform on your fleet

Free for up to 10 devices. 190+ checks, 8 compliance frameworks, continuous evidence.

Get started free →