View Zero Trust Service Catalogue 1 Match IdentityVerifiable Credentials
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
- Trusted Sign-in
- Streamlined Identity Lifecycle
- Verifiable Credentials
- Identity Protection
- Migration to Entra
- Identity Verification and Proofing
- Application Provisioning
- Identity SOC
Controls that govern how users, customers, and partners gain the right access.
- Secure External Access
- Organisational Identity Access Management
- Controlled Delegation
- Partner Identity Access Management
- Just-In-Time Privilege
- Adaptive Access
- Multifactor Identification
- Risk-Based Authentication
Oversight capabilities that enforce policy, compliance, and least privilege.
- Enterprise Governance
- Controlled Delegation
- Access Lifecycle
- Entitlement Management
- Data Protected
- Access Reviews
- Just-In-Time Privilege
- Adaptive Access
Security operations services that protect, detect, and respond across identities.
- Intelligent Threat Detection
- Dark Web & Supply Chain Insight
- Information Protection and Governance
- Endpoint & Cloud Protection
- Vulnerability Management
- Security Operations Centre as a Service (SOCaaS)
- Risk Management
Zero Trust Service Catalogue
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
Trusted Sign-in
Deliver secure workforce authentication with resilient cloud identity.
ProductsFront-door sign-in experience.Streamlined Identity Lifecycle
Automate joiner, mover, and leaver processes with governance built in.
ServicesFoundational lifecycle automation.Verifiable Credentials
Enable verifiable credential ecosystems and decentralised identity patterns.
ProductsServicesSupports modern trust models.Identity Protection
Detect and remediate compromised identities using adaptive risk policies.
ProductsProtects credentials and sessions.Migration to Entra
Plan and execute transitions from legacy directories to Microsoft Entra ID.
Modernises identity platforms.Identity Verification and Proofing
Establish strong workforce and customer identity proofing workflows.
Verifies users before granting trust.Application Provisioning
Provision and de-provision applications based on policy and lifecycle events.
Delivers access at scale.Identity SOC
Deliver identity-focused security operations and monitoring services.
Continuous identity threat monitoring.
Controls that govern how users, customers, and partners gain the right access.
Secure External Access
Deliver frictionless yet secure access experiences for customers.
ProductsCustomer access journeys.Organisational Identity Access Management
Centralise workforce access management and governance across the enterprise.
Core workforce IAM controls.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesDelegation pattern for partner and internal admins.Partner Identity Access Management
Control partner access and collaboration across shared resources.
Supports B2B collaboration.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
JIT admin elevation.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsPolicy engine for Zero Trust decisions.Multifactor Identification
Implement adaptive MFA for workforce, customer, and partner identities.
Strengthens authentication assurance.Risk-Based Authentication
Dynamically adjust authentication requirements based on risk signals.
Aligns access with contextual risk.
Oversight capabilities that enforce policy, compliance, and least privilege.
Enterprise Governance
Orchestrate policy, entitlement lifecycle, and compliance controls.
Unified governance framework.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesScoped admin controls.Access Lifecycle
Automate request, approval, and lifecycle workflows for entitlements.
ProductsDriven by Microsoft Entra ID Governance features.Entitlement Management
Manage access packages and approvals across internal and external users.
Lifecycle management of entitlements.Data Protected
Protect sensitive data through policy, detection, and response controls.
ProductsPrevents data exfiltration.Access Reviews
Run periodic and event-driven access attestation campaigns.
ProductsKeeps access least privilege.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
Protects high-risk access.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsSupports governance policy enforcement.
Security operations services that protect, detect, and respond across identities.
Intelligent Threat Detection
Deliver endpoint detection, response, and analytics using SIEM and XDR.
ProductsUnified endpoint threat detection.Dark Web & Supply Chain Insight
Detect compromised identities and supplier threats across external sources.
ProductsExtends monitoring beyond the perimeter.Information Protection and Governance
Classify, protect, and govern sensitive information assets.
Aligns information security controls.Endpoint & Cloud Protection
Secure hybrid environments spanning on-premises and cloud workloads.
ProductsHybrid security posture.Security Operations Centre as a Service (SOCaaS)
Provide 24x7 security monitoring, triage, and incident response.
Managed SOC delivery.Risk Management
Assess, prioritise, and mitigate security and identity risks.
Continuous risk oversight.
An ecosystem is the people, technology, and rules that let credentials be issued, stored, and checked across organisations without bespoke integrations.
What makes an ecosystem work
Successful VC ecosystems treat trust as a governance capability, not a platform feature. The goal is to create consistent assurance outcomes while allowing multiple issuers, verifiers, and wallet providers to participate — including access systems that need to verify proofs before granting entry.
In plain English: keep roles separate, publish who to trust, and make status/revocation work reliably.
Key principles:
- Role separation keeps architecture adaptable and avoids lock-in.
- Trust registries and accreditation provide consistent signals to verifiers.
- Lifecycle management (renewal, revocation, status) drives real-world reliability.
- Standards profiles and conformance make interoperability practical, not theoretical.
How ecosystems mature
In plain English: start small, prove trust and usability, then scale participation.
Example ecosystems
These are common patterns we see across sectors. Each can be implemented with different vendors and delivery models, provided trust and lifecycle governance are consistent.
In plain English: the same ecosystem pattern shows up in government, education, workforce, and supply chain.
View all Verifiable Credentials use cases
Standards posture
Why it matters: open standards make credentials portable; profiles and conformance make them actually interoperate.
Format choice should be driven by context (online vs offline, disclosure needs, device capabilities), not by vendor preference.
Operational realities
In plain English: the hard parts are risk tiers, status checks, and wallet rules.
Related resources
Quick glossary
- Issuer: the organisation that creates a credential.
- Holder: the person or organisation that stores and presents it.
- Verifier: the service that checks a credential.
- Trust registry: the published list of who is allowed to issue or verify.
- Lifecycle: how credentials are updated, suspended, or revoked.
You may also be interested in:
