The Business Challenge
While some passwordless systems only offer biometric authentication without additional features like identity verification or support for legacy applications, the BlockID platform distinguishes itself by providing several convenient functionalities.
1Kosmos prioritizes user flexibility, offering coexistence deployment options for IT teams and allowing individuals to onboard at their own pace. Recognizing the reality that certain essential systems remain password-based until fully replaced, 1Kosmos platform also incorporates a password reset feature, acknowledging the occasional need for platforms that cannot go passwordless.
BlockID goes beyond by integrating seamlessly with industry authentication standards such as OAuth, OIDC, SAML, and FIDO. Moreover, it extends support to legacy systems through RADIUS, ensuring interoperability across a wide range of operating systems, including Microsoft Entra ID, iOS, Android, Linux, and Unix operating systems.
The BlockID Advantage
Implement a Single Multi-Factor Authentication Platform
The 1Kosmos BlockID platform offers several forms of built-in identity based authentication:
Users will utilize their trusted mobile device for daily and step-up authentication, even offline access. Additionally, an appless journey is also available.
- Identity based facial biometric, LiveID
- Device biometrics such as TouchID and FaceID
- Time-based One-Time Password (TOTP)
- One-Time Password (OTP) and Offline Access OTP
- SMS and Email
- Push Notification
- FIDO2 Tokens
- Offline Access
- U2F – Universal Second Factors such as Universal Serial Bus (USB) and near-field communication (NFC)
The 1Kosmos BlockID platform is flexible and customizable, so you’ll be able to find the best adaptive authentication method that meets the unique needs of your diverse application ecosystem.
Build Secure Non-Phishable Authentication Through Verified Identity
The 1Kosmos BlockID FIDO2, NIST 800-63-3, and UKDIATF certifications provide the highest level of digital biometric identity and authentication assurance with superior interoperability—an an architectural advantage Our platform provides tamper evident, and trustworthy digital identity verification and more. Learn More . By leveraging the Trusted Platform Module / Secure Enclave of a device (what you have) and a live biometric (what you are) for multi-factor authentication, the device becomes the ‘possession element’ and the biometric the ‘inherence element’ in Strong Customer Authentication.
The offline equivalent would be presenting yourself and a credential such as a driver’s license for identification. For the online world, the device simply stands in as the license and the biometric as you.
Because our platform is certified, it provides certified identity assurance level 2 (IAL2) and certified authentication assurance level 2 (AAL2) and offers a high degree of interoperability via a robust API and SDK.
Support Legacy Systems with Built In Password Reset
Some passwordless systems provide biometric authentication but not much more … no identity verification, no support for legacy applications that can’t go passwordless, and limited support for a particular operating system with no backward compatibility for prior OS levels.
The BlockID platform comes with several convenient features, such as password reset for legacy or incompatible business applications. The password reset feature utilizes user biometrics to ensure the validity of the request.
BlockID also integrates via industry authentication standards such as OAuth, OIDC, SAML, and FIDO. It also offers legacy support via RADIUS and supports interoperability across Windows, Office365, Mac, iOS, Android, Linux, and Unix operating systems.
Deploy What You Need, When You Need It
As a cloud-based identity provider, 1Kosmos BlockID comes with several exciting administration features. The administration portal provides easy access to the configuration and management of the BlockID platform. Starting with over 50 out-of-the-box integrations and a robust API framework enabling quick and easy integrations into common technologies, including Microsoft Entra ID, Ping, Okta, and more.
Alternatively, by implementing our mobile SDK/API, you can securely integrate all functionality into your existing app or service. This approach eliminates silos created when managing multiple apps and services.