Employee onboarding and secure remote access require identity proofing

Our solutions verify that the live facial biometrics of new employees and remote workers match valid credentials to make sure they are always who they claim to be.

Strong authentication backed by strong identity with interoperability and minimal risk

We’ve gone through the rigor of FIDO2 and NIST 800-63-3 certification to help our customers avoid vendor lock-in and vulnerabilities from code that didn’t or couldn’t pass industry standard review.

Eliminate Password-Based Attacks

With our solutions, enrollment at various levels of identity assertion is fast and easy. Biometric based authentication eliminates passwords and credential stores minimizing threats from email phishing, account takeover, and password-based brute force attacks.

Improve User Satisfaction

1Kosmos is easy to use and typically boosts user satisfaction by 30% or more. QR codes placed conveniently alongside a traditional login allows users to decide when to adopt and provides them a consistent, user-friendly way to interact with any system.

Reduce IAM / Support Costs

Next-generation multi-factor authentication with a private key (what you have) and biometric (what you are) upgrades legacy MFA infrastructure. Password reset capability for legacy applications eliminates the need for help desk password assistance.


Self Service Enrollment / Reusable Digital Identity

Workers are typically invited to enroll via email or text. It takes just a minute or so to download the app, scan their biometric, verify a credential, and bind their digital identity to a corporate (e.g., Microsoft Active Directory) account.

With our enrollment, their reusable digital identity is ready for FIDO2 passwordless access on mobile, Windows or Mac and via any of seven identification methods including device biometrics, LiveID, push message, email/SMS/Token, 3rd party hardware token, Windows Hello, and MAC TouchID.

GDPR Privacy by Design

A worker’s encrypted digital identity is stored in a distributed ledger, accessible only via a private-public key pair secured in the TPM / Secure Enclave of a device and under sole control by the user via their biometric.

We prevent identity fraud and allow workers to control their private data by determining what personal data gets shared with each login or access request. Their identity is secured across multiple devices and since there is no user store, there is no honey pot of personally identifiable Information to secure against the threat of data breach.

Fast API / SDK Deployment

1Kosmos BlockID Workforce is deployed via a developer-friendly SDK and APIs that comply with the strictest GDPR, SOC2, ISO 27001 certification standards for handling and retention of sensitive data. For users, QR codes deploy alongside traditional OS, App, SSO, and MFA login.

We’ve developed our mission-critical platform to require no custom coding, no special firewall rules, or special security configurations. Deployment is simple and fast – typically in under a week –  with ready integration to existing applications and services with low risk and no disruption. QR codes allow users to choose when to adopt without having to replace existing login mechanisms on day 1.

Ready to go Passwordless?

Indisputable identity-proofing, advanced biometrics-powered passwordless authentication and fraud detection in a single application.