1Kosmos is in Epic Toolbox and meets Epic’s recommended practices for Identity Verification Integrations.
Integration type
Marketplace
Updated
Overview
1Kosmos Identity Verification for MyChart empowers patients to prove who they are safely and instantly inside MyChart. When setting up a new account or resetting a password, patients can complete identity verification with a quick selfie and government ID scan, eliminating manual checks and administrative delays. Built to NIST IAL2 compliance, this solution delivers high-assurance identity proofing.
Under the hood, 1Kosmos applies a decentralized, multi-factor identity model that analyzes and cross-verifies biometric data, government-issued IDs, device identity, and authoritative third-party sources. This layered approach ensures that identity verification reaches IAL2/AAL2 assurance levels while minimizing the risk of impersonation or account takeover.
Epic and MyChart is a registered trademark of Epic Systems Corporation.
1Kosmos allows patients to verify their identity in MyChart using a selfie and government ID scan during account setup or password reset, eliminating manual checks. Built to NIST IAL2 compliance, it cross-verifies biometric data, government IDs, device identity, and authoritative sources to prevent impersonation and account takeover.
Epic and MyChart are registered trademarks of Epic Systems Corporation.
Prerequisites
Active 1Kosmos tenant with IDV enabled: Contact your 1Kosmos representative to confirm IDV is provisioned and that the Epic-specific verification journey is configured for your organization.
Epic MyChart deployment: An active Epic EHR environment with MyChart enabled. Your Epic implementation team or Epic Technical Services contact is required to configure the integration on the Epic side.
Epic Showroom access: Review the 1Kosmos listing at showroom.epic.com (listing ID 3489) to confirm compatibility and initiate the integration request through Epic's standard third-party integration process.
API credentials: 1Kosmos API endpoint and credentials for the Epic integration, provisioned by your 1Kosmos representative.
Configuration values
Values to collect from 1Kosmos before Epic configuration:
Field | Description |
|---|---|
1Kosmos API endpoint | Tenant-specific API base URL, provided by your 1Kosmos representative |
API credentials | Client ID and Secret for the Epic integration application, generated in AdminX |
Verification journey ID | ID of the configured MyChart verification flow in AdminX → Verification Flows |
Webhook / callback URL | Endpoint where 1Kosmos sends the PASS/FAIL verification result back to Epic |
Verification journey settings to configure in AdminX:
Setting | Recommended value |
|---|---|
Journey type | KYC with Selfie (government ID scan + liveness biometric) |
Assurance level | NIST IAL2 |
Document types | Passport, Driver's License, National ID (150+ countries supported) |
Result delivery | API callback to Epic with PASS / FAIL status |
Integration steps
Step 1: Review the Epic Showroom listing
Navigate to showroom.epic.com and search for "1Kosmos" or access listing ID 3489 directly.
Review the integration description and confirm compatibility with your Epic version.
Contact your Epic Technical Services representative to initiate the third-party integration request for 1Kosmos Identity Verification.
Step 2: Configure the verification journey in AdminX
Log in to the 1Kosmos AdminX portal and navigate to Verification Flows.
Create a new verification journey. Select KYC with Selfie as the journey type to require both government ID scan and biometric selfie with liveness detection.
Set the assurance level to IAL2.
Enable the document types relevant to your patient population. For US-based MyChart deployments, at minimum enable Passport and Driver's License.
Configure the result callback to point to your Epic environment's webhook endpoint, where 1Kosmos will send the PASS or FAIL result after each verification attempt.
Copy the Verification Journey ID for use in the Epic configuration step.
Step 3: Provide API credentials to your Epic team
In AdminX, generate or locate the API Client ID and Client Secret for the Epic integration application.
Provide the API endpoint, Client ID, Client Secret, and Verification Journey ID to your Epic implementation team or Epic Technical Services contact.
Your Epic team configures the 1Kosmos API connection in the Epic integration engine, mapping it to the relevant MyChart identity verification trigger points (new account setup, password reset, onboarding).
Step 4: Configure the MyChart verification trigger
Work with your Epic team to define which MyChart actions require identity verification (e.g., new patient registration, forgotten username/password, proxy account request).
Epic configures the workflow to call the 1Kosmos API at the designated trigger point and present the verification flow to the patient on their device.
The patient completes the ID scan and selfie within the MyChart session. 1Kosmos returns a PASS or FAIL result via the configured callback.
Epic uses the result to either proceed with the requested action or present an error and alternative support path.
Step 5: Test the integration
In a test or staging MyChart environment, trigger the identity verification flow using a test patient account.
Complete the document scan and selfie capture steps and confirm a PASS result is returned to Epic.
Test the FAIL path and confirm the Epic workflow handles the result correctly (e.g., routes the patient to customer support).
Validate that verification results are logged in both the 1Kosmos AdminX audit trail and the Epic integration log before enabling in production.
Integration notes
The 1Kosmos MyChart integration follows Epic's recommended third-party IDV practices and is listed in the Epic Toolbox, meaning it has passed Epic's review process for identity verification integrations.
The IAL2 verification result is persisted in the 1Kosmos platform; patients who have completed an initial proofing session can be re-verified at subsequent high-risk events (such as a future password reset) without repeating the full document scan. For organizations subject to HIPAA, the 1Kosmos platform stores biometric and document data using a decentralized architecture that avoids centralized PII storage, supporting privacy compliance requirements.
Coordinate with your Epic Technical Services team on the specific MyChart build version required before beginning configuration.
