View Zero Trust Service Catalogue 1 Match IdentityVerifiable Credentials
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
- Trusted Sign-in
- Streamlined Identity Lifecycle
- Verifiable Credentials
- Identity Protection
- Migration to Entra
- Identity Verification and Proofing
- Application Provisioning
- Identity SOC
Controls that govern how users, customers, and partners gain the right access.
- Secure External Access
- Organisational Identity Access Management
- Controlled Delegation
- Partner Identity Access Management
- Just-In-Time Privilege
- Adaptive Access
- Multifactor Identification
- Risk-Based Authentication
Oversight capabilities that enforce policy, compliance, and least privilege.
- Enterprise Governance
- Controlled Delegation
- Access Lifecycle
- Entitlement Management
- Data Protected
- Access Reviews
- Just-In-Time Privilege
- Adaptive Access
Security operations services that protect, detect, and respond across identities.
- Intelligent Threat Detection
- Dark Web & Supply Chain Insight
- Information Protection and Governance
- Endpoint & Cloud Protection
- Vulnerability Management
- Security Operations Centre as a Service (SOCaaS)
- Risk Management
Zero Trust Service Catalogue
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
Trusted Sign-in
Deliver secure workforce authentication with resilient cloud identity.
ProductsFront-door sign-in experience.Streamlined Identity Lifecycle
Automate joiner, mover, and leaver processes with governance built in.
ServicesFoundational lifecycle automation.Verifiable Credentials
Enable verifiable credential ecosystems and decentralised identity patterns.
ProductsServicesSupports modern trust models.Identity Protection
Detect and remediate compromised identities using adaptive risk policies.
ProductsProtects credentials and sessions.Migration to Entra
Plan and execute transitions from legacy directories to Microsoft Entra ID.
Modernises identity platforms.Identity Verification and Proofing
Establish strong workforce and customer identity proofing workflows.
Verifies users before granting trust.Application Provisioning
Provision and de-provision applications based on policy and lifecycle events.
Delivers access at scale.Identity SOC
Deliver identity-focused security operations and monitoring services.
Continuous identity threat monitoring.
Controls that govern how users, customers, and partners gain the right access.
Secure External Access
Deliver frictionless yet secure access experiences for customers.
ProductsCustomer access journeys.Organisational Identity Access Management
Centralise workforce access management and governance across the enterprise.
Core workforce IAM controls.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesDelegation pattern for partner and internal admins.Partner Identity Access Management
Control partner access and collaboration across shared resources.
Supports B2B collaboration.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
JIT admin elevation.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsPolicy engine for Zero Trust decisions.Multifactor Identification
Implement adaptive MFA for workforce, customer, and partner identities.
Strengthens authentication assurance.Risk-Based Authentication
Dynamically adjust authentication requirements based on risk signals.
Aligns access with contextual risk.
Oversight capabilities that enforce policy, compliance, and least privilege.
Enterprise Governance
Orchestrate policy, entitlement lifecycle, and compliance controls.
Unified governance framework.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesScoped admin controls.Access Lifecycle
Automate request, approval, and lifecycle workflows for entitlements.
ProductsDriven by Microsoft Entra ID Governance features.Entitlement Management
Manage access packages and approvals across internal and external users.
Lifecycle management of entitlements.Data Protected
Protect sensitive data through policy, detection, and response controls.
ProductsPrevents data exfiltration.Access Reviews
Run periodic and event-driven access attestation campaigns.
ProductsKeeps access least privilege.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
Protects high-risk access.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsSupports governance policy enforcement.
Security operations services that protect, detect, and respond across identities.
Intelligent Threat Detection
Deliver endpoint detection, response, and analytics using SIEM and XDR.
ProductsUnified endpoint threat detection.Dark Web & Supply Chain Insight
Detect compromised identities and supplier threats across external sources.
ProductsExtends monitoring beyond the perimeter.Information Protection and Governance
Classify, protect, and govern sensitive information assets.
Aligns information security controls.Endpoint & Cloud Protection
Secure hybrid environments spanning on-premises and cloud workloads.
ProductsHybrid security posture.Security Operations Centre as a Service (SOCaaS)
Provide 24x7 security monitoring, triage, and incident response.
Managed SOC delivery.Risk Management
Assess, prioritise, and mitigate security and identity risks.
Continuous risk oversight.
Overview
Financial institutions can grant regulated agents delegated access to customer policies using Verifiable Credentials, with clear proof of authority and licensing.
Why it matters
Delegation is heavily regulated and hard to manage at scale. Credentials allow institutions to confirm who is authorised, under what scope, and for how long — without manual checks.
Ecosystem roles
- Issuer: The financial institution and relevant regulator (licence or authority claims).
- Holder: The agent or adviser.
- Verifier: The institution’s service channels that grant access.
Assurance and lifecycle
Delegation credentials should expire or be revoked when authority changes, reducing risk and compliance burden.
| Objective | Grant access to an agent to a member policy. |
| Description | Issue verifiable credentials to allow a financial agent access to a policy offered by a financial institute. |
| Actors | Policy holder; Financial agent |
| Dependencies | |
| Preconditions | The policy holder wishes to grant an external financial agent access to a policy they hold. |
| Postconditions | The financial agent holds permission to access a policy on behalf of the policy holder. |
flowchart LR
PH@{icon: "fa:user", label: "Policy holder", pos: "b"} -->|Delegates authority| AG@{icon: "fa:user-tie", label: "Financial agent", pos: "b"}
REG@{icon: "fa:scale-balanced", label: "Regulator", pos: "b"} -->|Issues licence VC| AG
FI@{icon: "fa:building-columns", label: "Financial institution", pos: "b"} -->|Issues delegation VC| AG
AG -->|Stores VCs| WAL@{icon: "fa:wallet", label: "Wallet", pos: "b"}
sequenceDiagram
participant PolicyHolder as Policy holder
participant FinancialInstitution as Financial institution
participant Regulator
participant Agent as Financial agent
participant Wallet
PolicyHolder->>FinancialInstitution: Request to delegate authority
FinancialInstitution-->>Wallet: Issue delegation VC
Regulator-->>Wallet: Issue licence VC
Agent->>Wallet: Stores credentials
Wallet-->>Agent: Credentials ready
| Objective | Financial agent accesses a member policy to act on behalf of the policy holder. |
| Description | Financial agent accesses a member policy on behalf of the policy holder, using a delegated authority previously given to the agent. |
| Actors | Financial agent |
| Dependencies | Financial agent has already been granted access by the Policy Holder |
| Preconditions | The financial agent requests access to the details of a policy on behalf of the policy holder. |
| Postconditions | The financial agent is granted access to the policy. |
flowchart LR
AG@{icon: "fa:user-tie", label: "Financial agent", pos: "b"} -->|Presents credentials| VER@{icon: "fa:id-badge", label: "Service channel / verifier", pos: "b"}
VER -->|Verify issuer, scope, status| TR@{icon: "fa:book", label: "Trust registry / status", pos: "b"}
VER -->|Access granted| SYS@{icon: "fa:file-contract", label: "Policy system", pos: "b"}
sequenceDiagram
participant Agent as Financial agent
participant Wallet
participant Verifier as Service channel
participant TrustRegistry as Trust registry/status
participant PolicySystem as Policy system
Agent->>Wallet: Approve presentation
Wallet->>Verifier: Present delegation + licence VCs
Verifier->>TrustRegistry: Check issuer, scope, status
TrustRegistry-->>Verifier: Valid
Verifier->>PolicySystem: Grant access
PolicySystem-->>Agent: Policy details
You may also be interested in:
