Verification and Enrollment
Authentication
Identity Wallet
Platform
Interoperability
Government Issued ID
+
Government Issued ID
1Kosmos BlockID identity proofing utilizes a user’s driver’s license, passport, or national ID to validate identity with consent. 1Kosmos BlockID supports document verification for over 205 countries in approximately 2300 formats.
Third-Party Verification
+
Third-Party Verification
1Kosmos BlockID utilizes an API to verify and validate the scanned document and captured data.
Bank ID
+
Bank ID
1Kosmos BlockID APIs utilize non-physical references, such as a Bank ID, to validate user identity and to improve identity assurance and KYC checks.
Telco ID
+
Telco ID
1Kosmos BlockID APIs utilize non-physical references, such as a Telco ID, to validate user identity and to improve identity assurance and KYC checks.
Email Verification
+
Email Verification
Users verify and enroll their email address into their identity wallet. This verified email address is presented to interested parties as proof of ownership of an email address.
SSN Verification
+
SSN Verification
Validate against issuing authority, in seconds, a user’s Social Security number to identify fraudulent identities.
Passport Verification
+
Passport Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and ensures that the ID is valid. For instance, 1Kosmos BlockID checks for common characteristics of the entered document to identify if a photocopy is used.
DL Verification
+
DL Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and looks to ensure that the ID is valid. 1Kosmos BlockID checks if a photocopy is used and reads the RFID chip. If the chip cannot be read, then the data is not validated.
Phone Verification
+
Phone Verification
Users enroll a verified phone number into their mobile wallet. This verified phone number is presented to interested parties as proof of ownership of a phone number.
SIM Binding
+
SIM Binding
Using a combination of SIM detection and SMS verification, BlockID is enabled to validate a user’s mobile number against a user’s account.
Liveness Detection
+
Liveness Detection
Using the expressions and a true-depth camera functionality, 1Kosmos BlockID utilizes a short selfie video that requires randomized facial movements to detect liveness and is certified to NIST 800-63-3 and iBeta ISO/IEC 30107-3 standards.
Digital Identity Score
+
Digital Identity Score
Based on what the user presented to prove identity at the time of enrollment, users will build an identity score. As users enroll and verify government issued IDs and non-physical IDs, their score will increase up to an IAL2.
Non Biased Decisioning
+
Non Biased Decisioning
Our distributed identity framework is private by design. This ensures that each user is verified independently of others and ensures a non-bias race and gender decisioning.
Private Permissioned Blockchain
+
Private Permissioned Blockchain
1Kosmos uses a blockchain network that is restricted to a group of users or organizations where participants must be granted permission to join. This is in contrast to a public blockchain, where anyone can participate without needing permission.
App and Appless Workflow
+
App and Appless Workflow
Organizations can implement a workflow for authentication and/or verification which utilizes an app-based workflow or an appless workflow. In an appless workflow, authentication or verification is completed through a browser.
ID Verification & Watchlist
+
ID Verification & Watchlist
ID verification and watchlists monitor for suspicious activities to catch syntheticID and account fraud. The user biometric is stored and added to the list so that if a fraudulent biometric is attempted again, the account creation will fail.
Employee On-Boarding
+
Employee On-Boarding
1Kosmos offers a tailorable new and existing account origination process for employees and contractors, delivering the highest degree of user assurance. New users can self-verify their identity or organizations can enroll existing users into the 1Kosmos identity based authentication platform.
Customer Enrollment
+
Customer Enrollment
1Kosmos offers a tailorable new account origination process for customers or citizens, delivering the highest degree of end-user assurance. New users self-verify their identity using government issued IDs, telco ID accounts, banking credentials or even social media ID.
Decentralized Credential Storage
+
Decentralized Credential Storage
1Kosmos BlockID gives users control over their personal, verified information and allows them to share it on demand in a safe and secure way plus maintains a complete, immutable history of each identity request and exchange.
Phishing-Proof Passwordless
+
Phishing-Proof Passwordless
1Kosmos approach to identity verification generates a verified credential and utilizes it as an artifact for certified passwordless MFA. The credential is used by the user to access their any connected application or service.
OTP SMS
+
OTP SMS
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a text with a set expiration time.
OTP Email
+
OTP Email
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a email with a set expiration time.
Time-Based One-Time Password (TOTP)
+
Time-Based One-Time Password (TOTP)
1Kosmos supports TOTP security codes tied to the requesting system for a user to gain access. The user enters the time-based Device Identifier (DID) generated by the 1Kosmos BlockID app.
Appless
+
Appless
The 1Kosmos appless capability is used on laptops. Users authenticate using their laptop biometric capabilities, like a camera or a fingerprint reader.
Device Biometrics (Face ID or Touch ID)
+
Device Biometrics (Face ID or Touch ID)
1Kosmos BlockID leverages the built-in Face ID or Touch ID identity technologies for authentication purposes.
Push Authentication
+
Push Authentication
When logging in, the user receives a notification on the trusted devices (either mobile or desktop) associated with the user account. Then, the user is presented with a simple “accept” or “deny” message to allow or prevent the login.
LiveID Biometric
+
LiveID Biometric
LiveID biometric authentication gives organizations the highest level of assurance for the identity on the other side of digital engagement.
QR Code
+
QR Code
The user scans the 1Kosmos QR code with the 1Kosmos BlockID app, and the user is guided through the implemented authentication method.
FIDO Authentication
+
FIDO Authentication
Where organizations require U2F tokens to secure access from multiple devices, 1Kosmos links the FIDO2 token to the user account for access requests.
SSO Authentication
+
SSO Authentication
1Kosmos removes the need for a username, password and separate 2FA into the SSO platform.
Social Login
+
Social Login
Through the OIDC / OAuth workflow, 1Kosmos accepts social credentials such as Google, Facebook and others as a login method.
Workstation OS Login
+
Workstation OS Login
Supporting Windows, Mac and Unix/Linux, 1Kosmos provides a passwordless authentication for users at the desktop. This capability also creates a Trust on First Use (TOFU) workflow where users will not be required to provide a username and password.
Offline Login
+
Offline Login
When a user is offline, the 1Kosmos BlockID App generates a workstation OTP. The OTP is specific for this event and will ensure users have access even when they are offline. Compatible with both Windows and Mac.
Remote Access
+
Remote Access
1Kosmos identity based authentication proves the identity of the user who’s actually authenticating. This removes the need for an username and password into the remote access platform.
Magic Links
+
Magic Links
A user is sent a unique link via email or text message. When clicked, the link grants them immediate access to a website, an application, or to bind their account to their identity.
NFC Support
+
NFC Support
1Kosmos BlockID leverages the NFC reader in mobile devices to read NFC chips on passports to capture and verify data.
Support for Multiple Accounts / Personas
+
Support for Multiple Accounts / Personas
Within the 1Kosmos BlockID app, users have multiple accounts or personas. This capability allows users to have different login workflows. This will enable organizations to require a separate account or persona for technologies that cannot go passwordless.
Device Biometrics (TouchID / FaceID)
+
Device Biometrics (TouchID / FaceID)
1Kosmos leverages the built-in Face ID or Touch ID identity technologies available on today’s devices for authentication into the identity wallet.
Mobile SDK (iOS, Android)
+
Mobile SDK (iOS, Android)
The 1Kosmos mobile SDK, integrates functionality into an existing app or service. This approach allows organizations to eliminate silos created when managing multiple apps and services.
Password Reset/Forgot
+
Password Reset/Forgot
Through the 1Kosmos BlockID app or user portal, users easily reset their passwords if and when needed for applications that cannot go passwordless.
Zero Trust Device Checks
+
Zero Trust Device Checks
The 1Kosmos BlockID app performs a zero trust check at every login for device tampering like a jailbreak.
Identity Portability (BYOI)
+
Identity Portability (BYOI)
1Kosmos BlockID enables a user to self manage their digital identity to share PII data with requesting parties at their discretion.
Wallet Recovery
+
Wallet Recovery
1Kosmos BlockID offers a recovery option for users in the case of a lost wallet.
White Labelling Support
+
White Labelling Support
The 1Kosmos BlockID mobile app can be white labeled, so you customize the look and feel to fit in with your brand identity and improve the user experience.
Web/Mobile Managed Wallet
+
Web/Mobile Managed Wallet
1Kosmos BlockID supports both mobile (for an app based journey) or a web wallet (for an appless journey) for users to manage their digital identity,
W3C - DID Compliant
+
W3C - DID Compliant
1Kosmos BlockID stores customer information in a distributed ledger, compliant to W3C DID standards.
W3C - Verifiable Credentials
+
W3C - Verifiable Credentials
1Kosmos BlockID issues verifiable credentials, which are digitally signed and are tamper-resistant, traceable, and instantaneously verifiable.
Credential Service Provider (CSP)
+
Credential Service Provider (CSP)
1Kosmos BlockID is deployed as a CSP to collect and verify information about a user and to verify that the claimed identity is associated with the real person supplying the identity evidence.
NIST 800-63-3
+
NIST 800-63-3
1Kosmos BlockID is certified by the Kantara Initiative to NIST800-63-3. Certification can be found here.
FIDO Certification
+
FIDO Certification
1Kosmos BlockID is certified by the FIDO Alliance. Certification can be found here.
OIDC and OAuth
+
OIDC and OAuth
Through the OIDC / OAuth workflow, 1Kosmos acts as both the Identity Provider (IdP) or as the Service Provider (SP), depending on the use case.
PSD2
+
PSD2
1Kosmos BlockID delivers PSD2 Compliant authentication while providing users with an exceptional customer experience.
SAML
+
SAML
Security Assertion Markup Language (SAML) supported by 1Kosmos enables a passwordless authentication solution for your organization's users by configuring 1Kosmos as the IdP.
RADIUS
+
RADIUS
1Kosmos integration with RADIUS accepts authentication requests from clients and enables secure logon with addition OTP.
GDPR Compliance
+
GDPR Compliance
1Kosmos BlockID provides a self-managed identity — including clear disclosures and consent to support GDPR Compliance initiatives.
Reporting and Dashboard
+
Reporting and Dashboard
The BlockID platform captures events and provides an easy-to-access interface to view/query the logs and provides a dashboard to monitor threats and to receive alerts on unauthorized access and unusual behavior patterns.
ISO 270001 Certification
+
ISO 270001 Certification
1Kosmos is certified ISO 27001 by the International Organization for Standardization (ISO). Certification can be found here.
SOC2 Certification
+
SOC2 Certification
1Kosmos is certified to SOC II Type 2. Certification can be found here.
Universal Web Login (UWL)
+
Universal Web Login (UWL)
1Kosmos BlockID supports universal web login (UWL) which is a flexible authentication framework that can be embedded into any web and mobile application to go passwordless using the BlockID mobile app.
Custom Branding of Login Page
+
Custom Branding of Login Page
1Kosmos allows branding on the login page and end user facing pages to match corporate level branding.
Policy Based Authentication
+
Policy Based Authentication
Trigger authentication journeys based criteria such as IP Address and geolocation of the user.
Federation Standards
+
Federation Standards
1Kosmos BlockID comes out of the box with native compatibility with OIDC, OAuth2, SAML and RADIUS protocols.
Integration with Single Sign On (SSO) Solutions
+
Integration with Single Sign On (SSO) Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with PAM Solutions
+
Integration with PAM Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with IGA Solutions
+
Integration with IGA Solutions
1Kosmos BlockID comes out of the box with connectors into leading IGA solutions, including ServiceNow, SailPoint and Saviynt. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Mobile Device Management (MDM) Solutions
+
Integration with Mobile Device Management (MDM) Solutions
1Kosmos BlockID comes out of the box with connectors into leading MDM solutions, including MobileIron and Blackberry. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Remote Access
+
Integration with Remote Access
1Kosmos BlockID comes out of the box with connectors into leading Remote Access solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Integration with VPN
+
Integration with VPN
1Kosmos BlockID comes out of the box with connectors into leading VPN solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
FIDO2 and WebAuthN Support
+
FIDO2 and WebAuthN Support
1Kosmos BlockID enables FIDO-based authentication via WebAuthn to supported browsers and platforms, allowing users to authenticate with built-in biometrics, mobile devices, and security keys to websites and applications.
Fraud Management System Integration
+
Fraud Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Fraud Management Systems, including RSA and LexisNexis. For those solutions where a connector is not offered, our APIs provide easy integration.
Risk & Behaviour Based Management System Integration
+
Risk & Behaviour Based Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Risk & Behaviour Based Management Systems, including BehavioSec. For those solutions where a connector is not offered, our APIs provide easy integration.
Operating Systems
+
Operating Systems
1Kosmos BlockID comes out of the box with connectors into Mac, Windows and Linux/Unix operating systems. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Cloud Applications
+
Cloud Applications
1Kosmos BlockID comes out of the box with connectors into leading Cloud-based applications, including O365, Gsuite, Salesforce and more. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
DevOps Platforms
+
DevOps Platforms
1Kosmos BlockID comes out of the box with connectors into leading DevOps platforms, including GitHub, Gitlab and Atlassian. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Advanced Directory Support
+
Advanced Directory Support
1Kosmos integrates with AD, LDAP, Azure AD and our user store. BlockID has the ability to authenticate users from multiple directories.
Verification and Enrollment
Authentication
Identity Wallet
Government Issued ID
+
Government Issued ID
1Kosmos BlockID identity proofing utilizes a user’s driver’s license, passport, or national ID to validate identity with consent. 1Kosmos BlockID supports document verification for over 205 countries in approximately 2300 formats.
Third-Party Verification
+
Third-Party Verification
1Kosmos BlockID utilizes an API to verify and validate the scanned document and captured data.
Bank ID
+
Bank ID
1Kosmos BlockID APIs utilize non-physical references, such as a Bank ID, to validate user identity and to improve identity assurance and KYC checks.
Telco ID
+
Telco ID
1Kosmos BlockID APIs utilize non-physical references, such as a Telco ID, to validate user identity and to improve identity assurance and KYC checks.
Email Verification
+
Email Verification
Users verify and enroll their email address into their identity wallet. This verified email address is presented to interested parties as proof of ownership of an email address.
SSN Verification
+
SSN Verification
Validate against issuing authority, in seconds, a user’s Social Security number to identify fraudulent identities.
Passport Verification
+
Passport Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and ensures that the ID is valid. For instance, 1Kosmos BlockID checks for common characteristics of the entered document to identify if a photocopy is used.
DL Verification
+
DL Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and looks to ensure that the ID is valid. 1Kosmos BlockID checks if a photocopy is used and reads the RFID chip. If the chip cannot be read, then the data is not validated.
Phone Verification
+
Phone Verification
Users enroll a verified phone number into their mobile wallet. This verified phone number is presented to interested parties as proof of ownership of a phone number.
SIM Binding
+
SIM Binding
Using a combination of SIM detection and SMS verification, BlockID is enabled to validate a user’s mobile number against a user’s account.
Liveness Detection
+
Liveness Detection
Using the expressions and a true-depth camera functionality, 1Kosmos BlockID utilizes a short selfie video that requires randomized facial movements to detect liveness and is certified to NIST 800-63-3 and iBeta ISO/IEC 30107-3 standards.
Digital Identity Score
+
Digital Identity Score
Based on what the user presented to prove identity at the time of enrollment, users will build an identity score. As users enroll and verify government issued IDs and non-physical IDs, their score will increase up to an IAL2.
Non Biased Decisioning
+
Non Biased Decisioning
Our distributed identity framework is private by design. This ensures that each user is verified independently of others and ensures a non-bias race and gender decisioning.
Private Permissioned Blockchain
+
Private Permissioned Blockchain
1Kosmos uses a blockchain network that is restricted to a group of users or organizations where participants must be granted permission to join. This is in contrast to a public blockchain, where anyone can participate without needing permission.
App and Appless Workflow
+
App and Appless Workflow
Organizations can implement a workflow for authentication and/or verification which utilizes an app-based workflow or an appless workflow. In an appless workflow, authentication or verification is completed through a browser.
ID Verification & Watchlist
+
ID Verification & Watchlist
ID verification and watchlists monitor for suspicious activities to catch syntheticID and account fraud. The user biometric is stored and added to the list so that if a fraudulent biometric is attempted again, the account creation will fail.
Employee On-Boarding
+
Employee On-Boarding
1Kosmos offers a tailorable new and existing account origination process for employees and contractors, delivering the highest degree of user assurance. New users can self-verify their identity or organizations can enroll existing users into the 1Kosmos identity based authentication platform.
Customer Enrollment
+
Customer Enrollment
1Kosmos offers a tailorable new account origination process for customers or citizens, delivering the highest degree of end-user assurance. New users self-verify their identity using government issued IDs, telco ID accounts, banking credentials or even social media ID.
Decentralized Credential Storage
+
Decentralized Credential Storage
1Kosmos BlockID gives users control over their personal, verified information and allows them to share it on demand in a safe and secure way plus maintains a complete, immutable history of each identity request and exchange.
Phishing-Proof Passwordless
+
Phishing-Proof Passwordless
1Kosmos approach to identity verification generates a verified credential and utilizes it as an artifact for certified passwordless MFA. The credential is used by the user to access their any connected application or service.
OTP SMS
+
OTP SMS
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a text with a set expiration time.
OTP Email
+
OTP Email
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a email with a set expiration time.
Time-Based One-Time Password (TOTP)
+
Time-Based One-Time Password (TOTP)
1Kosmos supports TOTP security codes tied to the requesting system for a user to gain access. The user enters the time-based Device Identifier (DID) generated by the 1Kosmos BlockID app.
Appless
+
Appless
The 1Kosmos appless capability is used on laptops. Users authenticate using their laptop biometric capabilities, like a camera or a fingerprint reader.
Device Biometrics (Face ID or Touch ID)
+
Device Biometrics (Face ID or Touch ID)
1Kosmos BlockID leverages the built-in Face ID or Touch ID identity technologies for authentication purposes.
Push Authentication
+
Push Authentication
When logging in, the user receives a notification on the trusted devices (either mobile or desktop) associated with the user account. Then, the user is presented with a simple “accept” or “deny” message to allow or prevent the login.
LiveID Biometric
+
LiveID Biometric
LiveID biometric authentication gives organizations the highest level of assurance for the identity on the other side of digital engagement.
QR Code
+
QR Code
The user scans the 1Kosmos QR code with the 1Kosmos BlockID app, and the user is guided through the implemented authentication method.
FIDO Authentication
+
FIDO Authentication
Where organizations require U2F tokens to secure access from multiple devices, 1Kosmos links the FIDO2 token to the user account for access requests.
SSO Authentication
+
SSO Authentication
1Kosmos removes the need for a username, password and separate 2FA into the SSO platform.
Social Login
+
Social Login
Through the OIDC / OAuth workflow, 1Kosmos accepts social credentials such as Google, Facebook and others as a login method.
Workstation OS Login
+
Workstation OS Login
Supporting Windows, Mac and Unix/Linux, 1Kosmos provides a passwordless authentication for users at the desktop. This capability also creates a Trust on First Use (TOFU) workflow where users will not be required to provide a username and password.
Offline Login
+
Offline Login
When a user is offline, the 1Kosmos BlockID App generates a workstation OTP. The OTP is specific for this event and will ensure users have access even when they are offline. Compatible with both Windows and Mac.
Remote Access
+
Remote Access
1Kosmos identity based authentication proves the identity of the user who’s actually authenticating. This removes the need for an username and password into the remote access platform.
Magic Links
+
Magic Links
A user is sent a unique link via email or text message. When clicked, the link grants them immediate access to a website, an application, or to bind their account to their identity.
NFC Support
+
NFC Support
1Kosmos BlockID leverages the NFC reader in mobile devices to read NFC chips on passports to capture and verify data.
Support for Multiple Accounts / Personas
+
Support for Multiple Accounts / Personas
Within the 1Kosmos BlockID app, users have multiple accounts or personas. This capability allows users to have different login workflows. This will enable organizations to require a separate account or persona for technologies that cannot go passwordless.
Device Biometrics (TouchID / FaceID)
+
Device Biometrics (TouchID / FaceID)
1Kosmos leverages the built-in Face ID or Touch ID identity technologies available on today’s devices for authentication into the identity wallet.
Mobile SDK (iOS, Android)
+
Mobile SDK (iOS, Android)
The 1Kosmos mobile SDK, integrates functionality into an existing app or service. This approach allows organizations to eliminate silos created when managing multiple apps and services.
Password Reset/Forgot
+
Password Reset/Forgot
Through the 1Kosmos BlockID app or user portal, users easily reset their passwords if and when needed for applications that cannot go passwordless.
Zero Trust Device Checks
+
Zero Trust Device Checks
The 1Kosmos BlockID app performs a zero trust check at every login for device tampering like a jailbreak.
Identity Portability (BYOI)
+
Identity Portability (BYOI)
1Kosmos BlockID enables a user to self manage their digital identity to share PII data with requesting parties at their discretion.
Wallet Recovery
+
Wallet Recovery
1Kosmos BlockID offers a recovery option for users in the case of a lost wallet.
White Labelling Support
+
White Labelling Support
The 1Kosmos BlockID mobile app can be white labeled, so you customize the look and feel to fit in with your brand identity and improve the user experience.
Web/Mobile Managed Wallet
+
Web/Mobile Managed Wallet
1Kosmos BlockID supports both mobile (for an app based journey) or a web wallet (for an appless journey) for users to manage their digital identity,
Platform
Interoperability
W3C - DID Compliant
+
W3C - DID Compliant
1Kosmos BlockID stores customer information in a distributed ledger, compliant to W3C DID standards.
W3C - Verifiable Credentials
+
W3C - Verifiable Credentials
1Kosmos BlockID issues verifiable credentials, which are digitally signed and are tamper-resistant, traceable, and instantaneously verifiable.
Credential Service Provider (CSP)
+
Credential Service Provider (CSP)
1Kosmos BlockID is deployed as a CSP to collect and verify information about a user and to verify that the claimed identity is associated with the real person supplying the identity evidence.
NIST 800-63-3
+
NIST 800-63-3
1Kosmos BlockID is certified by the Kantara Initiative to NIST800-63-3. Certification can be found here.
FIDO Certification
+
FIDO Certification
1Kosmos BlockID is certified by the FIDO Alliance. Certification can be found here.
OIDC and OAuth
+
OIDC and OAuth
Through the OIDC / OAuth workflow, 1Kosmos acts as both the Identity Provider (IdP) or as the Service Provider (SP), depending on the use case.
PSD2
+
PSD2
1Kosmos BlockID delivers PSD2 Compliant authentication while providing users with an exceptional customer experience.
SAML
+
SAML
Security Assertion Markup Language (SAML) supported by 1Kosmos enables a passwordless authentication solution for your organization's users by configuring 1Kosmos as the IdP.
RADIUS
+
RADIUS
1Kosmos integration with RADIUS accepts authentication requests from clients and enables secure logon with addition OTP.
GDPR Compliance
+
GDPR Compliance
1Kosmos BlockID provides a self-managed identity — including clear disclosures and consent to support GDPR Compliance initiatives.
Reporting and Dashboard
+
Reporting and Dashboard
The BlockID platform captures events and provides an easy-to-access interface to view/query the logs and provides a dashboard to monitor threats and to receive alerts on unauthorized access and unusual behavior patterns.
ISO 270001 Certification
+
ISO 270001 Certification
1Kosmos is certified ISO 27001 by the International Organization for Standardization (ISO). Certification can be found here.
SOC2 Certification
+
SOC2 Certification
1Kosmos is certified to SOC II Type 2. Certification can be found here.
Universal Web Login (UWL)
+
Universal Web Login (UWL)
1Kosmos BlockID supports universal web login (UWL) which is a flexible authentication framework that can be embedded into any web and mobile application to go passwordless using the BlockID mobile app.
Custom Branding of Login Page
+
Custom Branding of Login Page
1Kosmos allows branding on the login page and end user facing pages to match corporate level branding.
Policy Based Authentication
+
Policy Based Authentication
Trigger authentication journeys based criteria such as IP Address and geolocation of the user.
Federation Standards
+
Federation Standards
1Kosmos BlockID comes out of the box with native compatibility with OIDC, OAuth2, SAML and RADIUS protocols.
Integration with Single Sign On (SSO) Solutions
+
Integration with Single Sign On (SSO) Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with PAM Solutions
+
Integration with PAM Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with IGA Solutions
+
Integration with IGA Solutions
1Kosmos BlockID comes out of the box with connectors into leading IGA solutions, including ServiceNow, SailPoint and Saviynt. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Mobile Device Management (MDM) Solutions
+
Integration with Mobile Device Management (MDM) Solutions
1Kosmos BlockID comes out of the box with connectors into leading MDM solutions, including MobileIron and Blackberry. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Remote Access
+
Integration with Remote Access
1Kosmos BlockID comes out of the box with connectors into leading Remote Access solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Integration with VPN
+
Integration with VPN
1Kosmos BlockID comes out of the box with connectors into leading VPN solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
FIDO2 and WebAuthN Support
+
FIDO2 and WebAuthN Support
1Kosmos BlockID enables FIDO-based authentication via WebAuthn to supported browsers and platforms, allowing users to authenticate with built-in biometrics, mobile devices, and security keys to websites and applications.
Fraud Management System Integration
+
Fraud Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Fraud Management Systems, including RSA and LexisNexis. For those solutions where a connector is not offered, our APIs provide easy integration.
Risk & Behaviour Based Management System Integration
+
Risk & Behaviour Based Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Risk & Behaviour Based Management Systems, including BehavioSec. For those solutions where a connector is not offered, our APIs provide easy integration.
Operating Systems
+
Operating Systems
1Kosmos BlockID comes out of the box with connectors into Mac, Windows and Linux/Unix operating systems. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Cloud Applications
+
Cloud Applications
1Kosmos BlockID comes out of the box with connectors into leading Cloud-based applications, including O365, Gsuite, Salesforce and more. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
DevOps Platforms
+
DevOps Platforms
1Kosmos BlockID comes out of the box with connectors into leading DevOps platforms, including GitHub, Gitlab and Atlassian. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Advanced Directory Support
+
Advanced Directory Support
1Kosmos integrates with AD, LDAP, Azure AD and our user store. BlockID has the ability to authenticate users from multiple directories.
Verification and Enrollment
Authentication
Government Issued ID
+
Government Issued ID
1Kosmos BlockID identity proofing utilizes a user’s driver’s license, passport, or national ID to validate identity with consent. 1Kosmos BlockID supports document verification for over 205 countries in approximately 2300 formats.
Third-Party Verification
+
Third-Party Verification
1Kosmos BlockID utilizes an API to verify and validate the scanned document and captured data.
Bank ID
+
Bank ID
1Kosmos BlockID APIs utilize non-physical references, such as a Bank ID, to validate user identity and to improve identity assurance and KYC checks.
Telco ID
+
Telco ID
1Kosmos BlockID APIs utilize non-physical references, such as a Telco ID, to validate user identity and to improve identity assurance and KYC checks.
Email Verification
+
Email Verification
Users verify and enroll their email address into their identity wallet. This verified email address is presented to interested parties as proof of ownership of an email address.
SSN Verification
+
SSN Verification
Validate against issuing authority, in seconds, a user’s Social Security number to identify fraudulent identities.
Passport Verification
+
Passport Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and ensures that the ID is valid. For instance, 1Kosmos BlockID checks for common characteristics of the entered document to identify if a photocopy is used.
DL Verification
+
DL Verification
1Kosmos BlockID identity proofing technology captures the information in the ID and looks to ensure that the ID is valid. 1Kosmos BlockID checks if a photocopy is used and reads the RFID chip. If the chip cannot be read, then the data is not validated.
Phone Verification
+
Phone Verification
Users enroll a verified phone number into their mobile wallet. This verified phone number is presented to interested parties as proof of ownership of a phone number.
SIM Binding
+
SIM Binding
Using a combination of SIM detection and SMS verification, BlockID is enabled to validate a user’s mobile number against a user’s account.
Liveness Detection
+
Liveness Detection
Using the expressions and a true-depth camera functionality, 1Kosmos BlockID utilizes a short selfie video that requires randomized facial movements to detect liveness and is certified to NIST 800-63-3 and iBeta ISO/IEC 30107-3 standards.
Digital Identity Score
+
Digital Identity Score
Based on what the user presented to prove identity at the time of enrollment, users will build an identity score. As users enroll and verify government issued IDs and non-physical IDs, their score will increase up to an IAL2.
Non Biased Decisioning
+
Non Biased Decisioning
Our distributed identity framework is private by design. This ensures that each user is verified independently of others and ensures a non-bias race and gender decisioning.
Private Permissioned Blockchain
+
Private Permissioned Blockchain
1Kosmos uses a blockchain network that is restricted to a group of users or organizations where participants must be granted permission to join. This is in contrast to a public blockchain, where anyone can participate without needing permission.
App and Appless Workflow
+
App and Appless Workflow
Organizations can implement a workflow for authentication and/or verification which utilizes an app-based workflow or an appless workflow. In an appless workflow, authentication or verification is completed through a browser.
ID Verification & Watchlist
+
ID Verification & Watchlist
ID verification and watchlists monitor for suspicious activities to catch syntheticID and account fraud. The user biometric is stored and added to the list so that if a fraudulent biometric is attempted again, the account creation will fail.
Employee On-Boarding
+
Employee On-Boarding
1Kosmos offers a tailorable new and existing account origination process for employees and contractors, delivering the highest degree of user assurance. New users can self-verify their identity or organizations can enroll existing users into the 1Kosmos identity based authentication platform.
Customer Enrollment
+
Customer Enrollment
1Kosmos offers a tailorable new account origination process for customers or citizens, delivering the highest degree of end-user assurance. New users self-verify their identity using government issued IDs, telco ID accounts, banking credentials or even social media ID.
Decentralized Credential Storage
+
Decentralized Credential Storage
1Kosmos BlockID gives users control over their personal, verified information and allows them to share it on demand in a safe and secure way plus maintains a complete, immutable history of each identity request and exchange.
Phishing-Proof Passwordless
+
Phishing-Proof Passwordless
1Kosmos approach to identity verification generates a verified credential and utilizes it as an artifact for certified passwordless MFA. The credential is used by the user to access their any connected application or service.
OTP SMS
+
OTP SMS
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a text with a set expiration time.
OTP Email
+
OTP Email
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a email with a set expiration time.
Time-Based One-Time Password (TOTP)
+
Time-Based One-Time Password (TOTP)
1Kosmos supports TOTP security codes tied to the requesting system for a user to gain access. The user enters the time-based Device Identifier (DID) generated by the 1Kosmos BlockID app.
Appless
+
Appless
The 1Kosmos appless capability is used on laptops. Users authenticate using their laptop biometric capabilities, like a camera or a fingerprint reader.
Device Biometrics (Face ID or Touch ID)
+
Device Biometrics (Face ID or Touch ID)
1Kosmos BlockID leverages the built-in Face ID or Touch ID identity technologies for authentication purposes.
Push Authentication
+
Push Authentication
When logging in, the user receives a notification on the trusted devices (either mobile or desktop) associated with the user account. Then, the user is presented with a simple “accept” or “deny” message to allow or prevent the login.
LiveID Biometric
+
LiveID Biometric
LiveID biometric authentication gives organizations the highest level of assurance for the identity on the other side of digital engagement.
QR Code
+
QR Code
The user scans the 1Kosmos QR code with the 1Kosmos BlockID app, and the user is guided through the implemented authentication method.
FIDO Authentication
+
FIDO Authentication
Where organizations require U2F tokens to secure access from multiple devices, 1Kosmos links the FIDO2 token to the user account for access requests.
SSO Authentication
+
SSO Authentication
1Kosmos removes the need for a username, password and separate 2FA into the SSO platform.
Social Login
+
Social Login
Through the OIDC / OAuth workflow, 1Kosmos accepts social credentials such as Google, Facebook and others as a login method.
Workstation OS Login
+
Workstation OS Login
Supporting Windows, Mac and Unix/Linux, 1Kosmos provides a passwordless authentication for users at the desktop. This capability also creates a Trust on First Use (TOFU) workflow where users will not be required to provide a username and password.
Offline Login
+
Offline Login
When a user is offline, the 1Kosmos BlockID App generates a workstation OTP. The OTP is specific for this event and will ensure users have access even when they are offline. Compatible with both Windows and Mac.
Remote Access
+
Remote Access
1Kosmos identity based authentication proves the identity of the user who’s actually authenticating. This removes the need for an username and password into the remote access platform.
Magic Links
+
Magic Links
A user is sent a unique link via email or text message. When clicked, the link grants them immediate access to a website, an application, or to bind their account to their identity.
Identity Wallet
Platform
NFC Support
+
NFC Support
1Kosmos BlockID leverages the NFC reader in mobile devices to read NFC chips on passports to capture and verify data.
Support for Multiple Accounts / Personas
+
Support for Multiple Accounts / Personas
Within the 1Kosmos BlockID app, users have multiple accounts or personas. This capability allows users to have different login workflows. This will enable organizations to require a separate account or persona for technologies that cannot go passwordless.
Device Biometrics (TouchID / FaceID)
+
Device Biometrics (TouchID / FaceID)
1Kosmos leverages the built-in Face ID or Touch ID identity technologies available on today’s devices for authentication into the identity wallet.
Mobile SDK (iOS, Android)
+
Mobile SDK (iOS, Android)
The 1Kosmos mobile SDK, integrates functionality into an existing app or service. This approach allows organizations to eliminate silos created when managing multiple apps and services.
Password Reset/Forgot
+
Password Reset/Forgot
Through the 1Kosmos BlockID app or user portal, users easily reset their passwords if and when needed for applications that cannot go passwordless.
Zero Trust Device Checks
+
Zero Trust Device Checks
The 1Kosmos BlockID app performs a zero trust check at every login for device tampering like a jailbreak.
Identity Portability (BYOI)
+
Identity Portability (BYOI)
1Kosmos BlockID enables a user to self manage their digital identity to share PII data with requesting parties at their discretion.
Wallet Recovery
+
Wallet Recovery
1Kosmos BlockID offers a recovery option for users in the case of a lost wallet.
White Labelling Support
+
White Labelling Support
The 1Kosmos BlockID mobile app can be white labeled, so you customize the look and feel to fit in with your brand identity and improve the user experience.
Web/Mobile Managed Wallet
+
Web/Mobile Managed Wallet
1Kosmos BlockID supports both mobile (for an app based journey) or a web wallet (for an appless journey) for users to manage their digital identity,
W3C - DID Compliant
+
W3C - DID Compliant
1Kosmos BlockID stores customer information in a distributed ledger, compliant to W3C DID standards.
W3C - Verifiable Credentials
+
W3C - Verifiable Credentials
1Kosmos BlockID issues verifiable credentials, which are digitally signed and are tamper-resistant, traceable, and instantaneously verifiable.
Credential Service Provider (CSP)
+
Credential Service Provider (CSP)
1Kosmos BlockID is deployed as a CSP to collect and verify information about a user and to verify that the claimed identity is associated with the real person supplying the identity evidence.
NIST 800-63-3
+
NIST 800-63-3
1Kosmos BlockID is certified by the Kantara Initiative to NIST800-63-3. Certification can be found here.
FIDO Certification
+
FIDO Certification
1Kosmos BlockID is certified by the FIDO Alliance. Certification can be found here.
OIDC and OAuth
+
OIDC and OAuth
Through the OIDC / OAuth workflow, 1Kosmos acts as both the Identity Provider (IdP) or as the Service Provider (SP), depending on the use case.
PSD2
+
PSD2
1Kosmos BlockID delivers PSD2 Compliant authentication while providing users with an exceptional customer experience.
SAML
+
SAML
Security Assertion Markup Language (SAML) supported by 1Kosmos enables a passwordless authentication solution for your organization's users by configuring 1Kosmos as the IdP.
RADIUS
+
RADIUS
1Kosmos integration with RADIUS accepts authentication requests from clients and enables secure logon with addition OTP.
GDPR Compliance
+
GDPR Compliance
1Kosmos BlockID provides a self-managed identity — including clear disclosures and consent to support GDPR Compliance initiatives.
Reporting and Dashboard
+
Reporting and Dashboard
The BlockID platform captures events and provides an easy-to-access interface to view/query the logs and provides a dashboard to monitor threats and to receive alerts on unauthorized access and unusual behavior patterns.
ISO 270001 Certification
+
ISO 270001 Certification
1Kosmos is certified ISO 27001 by the International Organization for Standardization (ISO). Certification can be found here.
SOC2 Certification
+
SOC2 Certification
1Kosmos is certified to SOC II Type 2. Certification can be found here.
Universal Web Login (UWL)
+
Universal Web Login (UWL)
1Kosmos BlockID supports universal web login (UWL) which is a flexible authentication framework that can be embedded into any web and mobile application to go passwordless using the BlockID mobile app.
Custom Branding of Login Page
+
Custom Branding of Login Page
1Kosmos allows branding on the login page and end user facing pages to match corporate level branding.
Policy Based Authentication
+
Policy Based Authentication
Trigger authentication journeys based criteria such as IP Address and geolocation of the user.
Interoperability
Federation Standards
+
Federation Standards
1Kosmos BlockID comes out of the box with native compatibility with OIDC, OAuth2, SAML and RADIUS protocols.
Integration with Single Sign On (SSO) Solutions
+
Integration with Single Sign On (SSO) Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with PAM Solutions
+
Integration with PAM Solutions
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with IGA Solutions
+
Integration with IGA Solutions
1Kosmos BlockID comes out of the box with connectors into leading IGA solutions, including ServiceNow, SailPoint and Saviynt. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Mobile Device Management (MDM) Solutions
+
Integration with Mobile Device Management (MDM) Solutions
1Kosmos BlockID comes out of the box with connectors into leading MDM solutions, including MobileIron and Blackberry. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Remote Access
+
Integration with Remote Access
1Kosmos BlockID comes out of the box with connectors into leading Remote Access solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Integration with VPN
+
Integration with VPN
1Kosmos BlockID comes out of the box with connectors into leading VPN solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
FIDO2 and WebAuthN Support
+
FIDO2 and WebAuthN Support
1Kosmos BlockID enables FIDO-based authentication via WebAuthn to supported browsers and platforms, allowing users to authenticate with built-in biometrics, mobile devices, and security keys to websites and applications.
Fraud Management System Integration
+
Fraud Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Fraud Management Systems, including RSA and LexisNexis. For those solutions where a connector is not offered, our APIs provide easy integration.
Risk & Behaviour Based Management System Integration
+
Risk & Behaviour Based Management System Integration
1Kosmos BlockID comes out of the box with connectors into leading Risk & Behaviour Based Management Systems, including BehavioSec. For those solutions where a connector is not offered, our APIs provide easy integration.
Operating Systems
+
Operating Systems
1Kosmos BlockID comes out of the box with connectors into Mac, Windows and Linux/Unix operating systems. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Cloud Applications
+
Cloud Applications
1Kosmos BlockID comes out of the box with connectors into leading Cloud-based applications, including O365, Gsuite, Salesforce and more. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
DevOps Platforms
+
DevOps Platforms
1Kosmos BlockID comes out of the box with connectors into leading DevOps platforms, including GitHub, Gitlab and Atlassian. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Advanced Directory Support
+
Advanced Directory Support
1Kosmos integrates with AD, LDAP, Azure AD and our user store. BlockID has the ability to authenticate users from multiple directories.
Verification and Enrollment
Authentication
Identity Wallet
Platform
Interoperability
Government Issued ID
+ -
1Kosmos BlockID identity proofing utilizes a user’s driver’s license, passport, or national ID to validate identity with consent. 1Kosmos BlockID supports document verification for over 205 countries in approximately 2300 formats.
Third-Party Verification
+ -
1Kosmos BlockID utilizes an API to verify and validate the scanned document and captured data.
Bank ID
+ -
1Kosmos BlockID APIs utilize non-physical references, such as a Bank ID, to validate user identity and to improve identity assurance and KYC checks.
Telco ID
+ -
1Kosmos BlockID APIs utilize non-physical references, such as a Telco ID, to validate user identity and to improve identity assurance and KYC checks.
Email Verification
+ -
Users verify and enroll their email address into their identity wallet. This verified email address is presented to interested parties as proof of ownership of an email address.
SSN Verification
+ -
Validate against issuing authority, in seconds, a user’s Social Security number to identify fraudulent identities.
Passport Verification
+ -
1Kosmos BlockID identity proofing technology captures the information in the ID and ensures that the ID is valid. For instance, 1Kosmos BlockID checks for common characteristics of the entered document to identify if a photocopy is used.
DL Verification
+ -
1Kosmos BlockID identity proofing technology captures the information in the ID and looks to ensure that the ID is valid. 1Kosmos BlockID checks if a photocopy is used and reads the RFID chip. If the chip cannot be read, then the data is not validated.
Phone Verification
+ -
Users enroll a verified phone number into their mobile wallet. This verified phone number is presented to interested parties as proof of ownership of a phone number.
SIM Binding
+ -
Using a combination of SIM detection and SMS verification, BlockID is enabled to validate a user’s mobile number against a user’s account.
Liveness Detection
+ -
Using the expressions and a true-depth camera functionality, 1Kosmos BlockID utilizes a short selfie video that requires randomized facial movements to detect liveness and is certified to NIST 800-63-3 and iBeta ISO/IEC 30107-3 standards.
Digital Identity Score
+ -
Based on what the user presented to prove identity at the time of enrollment, users will build an identity score. As users enroll and verify government issued IDs and non-physical IDs, their score will increase up to an IAL2.
Non Biased Decisioning
+ -
Our distributed identity framework is private by design. This ensures that each user is verified independently of others and ensures a non-bias race and gender decisioning.
Private Permissioned Blockchain
+ -
1Kosmos uses a blockchain network that is restricted to a group of users or organizations where participants must be granted permission to join. This is in contrast to a public blockchain, where anyone can participate without needing permission.
App and Appless Workflow
+ -
Organizations can implement a workflow for authentication and/or verification which utilizes an app-based workflow or an appless workflow. In an appless workflow, authentication or verification is completed through a browser.
ID Verification & Watchlist
+ -
ID verification and watchlists monitor for suspicious activities to catch syntheticID and account fraud. The user biometric is stored and added to the list so that if a fraudulent biometric is attempted again, the account creation will fail.
Employee On-Boarding
+ -
1Kosmos offers a tailorable new and existing account origination process for employees and contractors, delivering the highest degree of user assurance. New users can self-verify their identity or organizations can enroll existing users into the 1Kosmos identity based authentication platform.
Customer Enrollment
+ -
1Kosmos offers a tailorable new account origination process for customers or citizens, delivering the highest degree of end-user assurance. New users self-verify their identity using government issued IDs, telco ID accounts, banking credentials or even social media ID.
Decentralized Credential Storage
+ -
1Kosmos BlockID gives users control over their personal, verified information and allows them to share it on demand in a safe and secure way plus maintains a complete, immutable history of each identity request and exchange.
Phishing-Proof Passwordless
+ -
1Kosmos approach to identity verification generates a verified credential and utilizes it as an artifact for certified passwordless MFA. The credential is used by the user to access their any connected application or service.
OTP SMS
+ -
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a text with a set expiration time.
OTP Email
+ -
1Kosmos supports a one-time password (OTP) security code tied to a session that is sent to a user via a email with a set expiration time.
Time-Based One-Time Password (TOTP)
+ -
1Kosmos supports TOTP security codes tied to the requesting system for a user to gain access. The user enters the time-based Device Identifier (DID) generated by the 1Kosmos BlockID app.
Appless
+ -
The 1Kosmos appless capability is used on laptops. Users authenticate using their laptop biometric capabilities, like a camera or a fingerprint reader.
Device Biometrics (Face ID or Touch ID)
+ -
1Kosmos BlockID leverages the built-in Face ID or Touch ID identity technologies for authentication purposes.
Push Authentication
+ -
When logging in, the user receives a notification on the trusted devices (either mobile or desktop) associated with the user account. Then, the user is presented with a simple “accept” or “deny” message to allow or prevent the login.
LiveID Biometric
+ -
LiveID biometric authentication gives organizations the highest level of assurance for the identity on the other side of digital engagement.
QR Code
+ -
The user scans the 1Kosmos QR code with the 1Kosmos BlockID app, and the user is guided through the implemented authentication method.
FIDO Authentication
+ -
Where organizations require U2F tokens to secure access from multiple devices, 1Kosmos links the FIDO2 token to the user account for access requests.
SSO Authentication
+ -
1Kosmos removes the need for a username, password and separate 2FA into the SSO platform.
Social Login
+ -
Through the OIDC / OAuth workflow, 1Kosmos accepts social credentials such as Google, Facebook and others as a login method.
Workstation OS Login
+ -
Supporting Windows, Mac and Unix/Linux, 1Kosmos provides a passwordless authentication for users at the desktop. This capability also creates a Trust on First Use (TOFU) workflow where users will not be required to provide a username and password.
Offline Login
+ -
When a user is offline, the 1Kosmos BlockID App generates a workstation OTP. The OTP is specific for this event and will ensure users have access even when they are offline. Compatible with both Windows and Mac.
Remote Access
+ -
1Kosmos identity based authentication proves the identity of the user who’s actually authenticating. This removes the need for an username and password into the remote access platform.
Magic Links
+ -
A user is sent a unique link via email or text message. When clicked, the link grants them immediate access to a website, an application, or to bind their account to their identity.
NFC Support
+ -
1Kosmos BlockID leverages the NFC reader in mobile devices to read NFC chips on passports to capture and verify data.
Support for Multiple Accounts / Personas
+ -
Within the 1Kosmos BlockID app, users have multiple accounts or personas. This capability allows users to have different login workflows. This will enable organizations to require a separate account or persona for technologies that cannot go passwordless.
Device Biometrics (TouchID / FaceID)
+ -
1Kosmos leverages the built-in Face ID or Touch ID identity technologies available on today’s devices for authentication into the identity wallet.
Mobile SDK (iOS, Android)
+ -
The 1Kosmos mobile SDK, integrates functionality into an existing app or service. This approach allows organizations to eliminate silos created when managing multiple apps and services.
Password Reset/Forgot
+ -
Through the 1Kosmos BlockID app or user portal, users easily reset their passwords if and when needed for applications that cannot go passwordless.
Zero Trust Device Checks
+ -
The 1Kosmos BlockID app performs a zero trust check at every login for device tampering like a jailbreak.
Identity Portability (BYOI)
+ -
1Kosmos BlockID enables a user to self manage their digital identity to share PII data with requesting parties at their discretion.
Wallet Recovery
+ -
1Kosmos BlockID offers a recovery option for users in the case of a lost wallet.
White Labelling Support
+ -
The 1Kosmos BlockID mobile app can be white labeled, so you customize the look and feel to fit in with your brand identity and improve the user experience.
Web/Mobile Managed Wallet
+ -
1Kosmos BlockID supports both mobile (for an app based journey) or a web wallet (for an appless journey) for users to manage their digital identity,
W3C - DID Compliant
+ -
1Kosmos BlockID stores customer information in a distributed ledger, compliant to W3C DID standards.
W3C - Verifiable Credentials
+ -
1Kosmos BlockID issues verifiable credentials, which are digitally signed and are tamper-resistant, traceable, and instantaneously verifiable.
Credential Service Provider (CSP)
+ -
1Kosmos BlockID is deployed as a CSP to collect and verify information about a user and to verify that the claimed identity is associated with the real person supplying the identity evidence.
NIST 800-63-3
+ -
1Kosmos BlockID is certified by the Kantara Initiative to NIST800-63-3. Certification can be found here.
FIDO Certification
+ -
1Kosmos BlockID is certified by the FIDO Alliance. Certification can be found here.
OIDC and OAuth
+ -
Through the OIDC / OAuth workflow, 1Kosmos acts as both the Identity Provider (IdP) or as the Service Provider (SP), depending on the use case.
PSD2
+ -
1Kosmos BlockID delivers PSD2 Compliant authentication while providing users with an exceptional customer experience.
SAML
+ -
Security Assertion Markup Language (SAML) supported by 1Kosmos enables a passwordless authentication solution for your organization's users by configuring 1Kosmos as the IdP.
RADIUS
+ -
1Kosmos integration with RADIUS accepts authentication requests from clients and enables secure logon with addition OTP.
GDPR Compliance
+ -
1Kosmos BlockID provides a self-managed identity — including clear disclosures and consent to support GDPR Compliance initiatives.
Reporting and Dashboard
+ -
The BlockID platform captures events and provides an easy-to-access interface to view/query the logs and provides a dashboard to monitor threats and to receive alerts on unauthorized access and unusual behavior patterns.
ISO 270001 Certification
+ -
1Kosmos is certified ISO 27001 by the International Organization for Standardization (ISO). Certification can be found here.
SOC2 Certification
+ -
1Kosmos is certified to SOC II Type 2. Certification can be found here.
Universal Web Login (UWL)
+ -
1Kosmos BlockID supports universal web login (UWL) which is a flexible authentication framework that can be embedded into any web and mobile application to go passwordless using the BlockID mobile app.
Custom Branding of Login Page
+ -
1Kosmos allows branding on the login page and end user facing pages to match corporate level branding.
Policy Based Authentication
+ -
Trigger authentication journeys based criteria such as IP Address and geolocation of the user.
Federation Standards
+ -
1Kosmos BlockID comes out of the box with native compatibility with OIDC, OAuth2, SAML and RADIUS protocols.
Integration with Single Sign On (SSO) Solutions
+ -
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with PAM Solutions
+ -
1Kosmos BlockID comes out of the box with connectors into leading PAM solutions. See here. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with IGA Solutions
+ -
1Kosmos BlockID comes out of the box with connectors into leading IGA solutions, including ServiceNow, SailPoint and Saviynt. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Mobile Device Management (MDM) Solutions
+ -
1Kosmos BlockID comes out of the box with connectors into leading MDM solutions, including MobileIron and Blackberry. For those solutions where a connector is not offered, our APIs provide easy integration.
Integration with Remote Access
+ -
1Kosmos BlockID comes out of the box with connectors into leading Remote Access solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Integration with VPN
+ -
1Kosmos BlockID comes out of the box with connectors into leading VPN solutions. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
FIDO2 and WebAuthN Support
+ -
1Kosmos BlockID enables FIDO-based authentication via WebAuthn to supported browsers and platforms, allowing users to authenticate with built-in biometrics, mobile devices, and security keys to websites and applications.
Fraud Management System Integration
+ -
1Kosmos BlockID comes out of the box with connectors into leading Fraud Management Systems, including RSA and LexisNexis. For those solutions where a connector is not offered, our APIs provide easy integration.
Risk & Behaviour Based Management System Integration
+ -
1Kosmos BlockID comes out of the box with connectors into leading Risk & Behaviour Based Management Systems, including BehavioSec. For those solutions where a connector is not offered, our APIs provide easy integration.
Operating Systems
+ -
1Kosmos BlockID comes out of the box with connectors into Mac, Windows and Linux/Unix operating systems. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Cloud Applications
+ -
1Kosmos BlockID comes out of the box with connectors into leading Cloud-based applications, including O365, Gsuite, Salesforce and more. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
DevOps Platforms
+ -
1Kosmos BlockID comes out of the box with connectors into leading DevOps platforms, including GitHub, Gitlab and Atlassian. See here. For those solutions where a connector is not offered, our API’s will provide easy integration.
Advanced Directory Support
+ -
1Kosmos integrates with AD, LDAP, Azure AD and our user store. BlockID has the ability to authenticate users from multiple directories.

Ready to go Passwordless?

Indisputable identity-proofing, advanced biometrics-powered passwordless authentication and fraud detection in a single application.
Schedule a Meeting Today