Integration type
Marketplace
Updated
Overview
IBM Security Verify supports OIDC/SAML federation and provides an extensible Access Policy framework. The integration operates through three mechanisms.
Integration architecture
Mechanism A: OIDC federation
1Kosmos is registered as an external OIDC provider in the IBM Verify tenant. Access policies route users to 1Kosmos for identity proofing during registration or high-assurance login.
Mechanism B: REST API integration
IBM Verify's custom risk assessment policies invoke 1Kosmos APIs to trigger proofing sessions or step-up challenges based on adaptive risk scoring.
Mechanism C: Webhooks
1Kosmos posts verification results to IBM Verify event listeners that update user risk profiles and access entitlements. IBM Verify's event processing engine consumes these events to adjust the user's trust score in real time.
Step-up verification flow
IBM Verify's adaptive access evaluates behavioral analytics and context signals (device trust, geolocation, session anomaly) to produce a risk score. When the risk score exceeds a configurable threshold, the access policy triggers a step-up challenge via 1Kosmos LiveID. The biometric result feeds back into IBM Verify's risk model, creating a feedback loop where successful biometric confirmations reduce future friction and failed attempts escalate monitoring.
Feedback loop:
