View Zero Trust Service Catalogue 1 Match IdentityVerifiable Credentials
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
- Trusted Sign-in
- Streamlined Identity Lifecycle
- Verifiable Credentials
- Identity Protection
- Migration to Entra
- Identity Verification and Proofing
- Application Provisioning
- Identity SOC
Controls that govern how users, customers, and partners gain the right access.
- Secure External Access
- Organisational Identity Access Management
- Controlled Delegation
- Partner Identity Access Management
- Just-In-Time Privilege
- Adaptive Access
- Multifactor Identification
- Risk-Based Authentication
Oversight capabilities that enforce policy, compliance, and least privilege.
- Enterprise Governance
- Controlled Delegation
- Access Lifecycle
- Entitlement Management
- Data Protected
- Access Reviews
- Just-In-Time Privilege
- Adaptive Access
Security operations services that protect, detect, and respond across identities.
- Intelligent Threat Detection
- Dark Web & Supply Chain Insight
- Information Protection and Governance
- Endpoint & Cloud Protection
- Vulnerability Management
- Security Operations Centre as a Service (SOCaaS)
- Risk Management
Zero Trust Service Catalogue
Zero Trust Service Catalogue
UNIFY's identity-first catalogue spanning the core Zero Trust pillars.
Capabilities that establish, migrate, and assure digital identities.
Trusted Sign-in
Deliver secure workforce authentication with resilient cloud identity.
ProductsFront-door sign-in experience.Streamlined Identity Lifecycle
Automate joiner, mover, and leaver processes with governance built in.
ServicesFoundational lifecycle automation.Verifiable Credentials
Enable verifiable credential ecosystems and decentralised identity patterns.
ProductsServicesSupports modern trust models.Identity Protection
Detect and remediate compromised identities using adaptive risk policies.
ProductsProtects credentials and sessions.Migration to Entra
Plan and execute transitions from legacy directories to Microsoft Entra ID.
Modernises identity platforms.Identity Verification and Proofing
Establish strong workforce and customer identity proofing workflows.
Verifies users before granting trust.Application Provisioning
Provision and de-provision applications based on policy and lifecycle events.
Delivers access at scale.Identity SOC
Deliver identity-focused security operations and monitoring services.
Continuous identity threat monitoring.
Controls that govern how users, customers, and partners gain the right access.
Secure External Access
Deliver frictionless yet secure access experiences for customers.
ProductsCustomer access journeys.Organisational Identity Access Management
Centralise workforce access management and governance across the enterprise.
Core workforce IAM controls.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesDelegation pattern for partner and internal admins.Partner Identity Access Management
Control partner access and collaboration across shared resources.
Supports B2B collaboration.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
JIT admin elevation.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsPolicy engine for Zero Trust decisions.Multifactor Identification
Implement adaptive MFA for workforce, customer, and partner identities.
Strengthens authentication assurance.Risk-Based Authentication
Dynamically adjust authentication requirements based on risk signals.
Aligns access with contextual risk.
Oversight capabilities that enforce policy, compliance, and least privilege.
Enterprise Governance
Orchestrate policy, entitlement lifecycle, and compliance controls.
Unified governance framework.Controlled Delegation
Enable secure delegation of administrative privileges and oversight.
ServicesScoped admin controls.Access Lifecycle
Automate request, approval, and lifecycle workflows for entitlements.
ProductsDriven by Microsoft Entra ID Governance features.Entitlement Management
Manage access packages and approvals across internal and external users.
Lifecycle management of entitlements.Data Protected
Protect sensitive data through policy, detection, and response controls.
ProductsPrevents data exfiltration.Access Reviews
Run periodic and event-driven access attestation campaigns.
ProductsKeeps access least privilege.Just-In-Time Privilege
Control, monitor, and audit privileged accounts and sessions.
Protects high-risk access.Adaptive Access
Enforce risk-aware access policies across identities and devices.
ProductsSupports governance policy enforcement.
Security operations services that protect, detect, and respond across identities.
Intelligent Threat Detection
Deliver endpoint detection, response, and analytics using SIEM and XDR.
ProductsUnified endpoint threat detection.Dark Web & Supply Chain Insight
Detect compromised identities and supplier threats across external sources.
ProductsExtends monitoring beyond the perimeter.Information Protection and Governance
Classify, protect, and govern sensitive information assets.
Aligns information security controls.Endpoint & Cloud Protection
Secure hybrid environments spanning on-premises and cloud workloads.
ProductsHybrid security posture.Security Operations Centre as a Service (SOCaaS)
Provide 24x7 security monitoring, triage, and incident response.
Managed SOC delivery.Risk Management
Assess, prioritise, and mitigate security and identity risks.
Continuous risk oversight.
Overview
For high‑risk transactions, services can require a Verifiable Credential that proves a specific entitlement or clearance before allowing a sensitive action.
Why it matters
Traditional step‑up flows rely on one‑off integrations and manual checks. VCs make step‑up assurance portable across services while preserving privacy.
Ecosystem roles
- Issuer: The authority granting clearance or entitlement.
- Holder: The user or staff member.
- Verifier: The service enforcing step‑up access.
Assurance and access
Only the minimum attributes needed for the action are disclosed. Status checks ensure the entitlement remains valid.
| Objective | Require stronger proof before high‑risk actions. |
| Description | Verify a clearance or entitlement VC before approving sensitive access. |
| Actors | Issuing authority; User; Service owner |
| Dependencies | Issuer trust registry and status endpoint. |
| Preconditions | User holds a valid entitlement credential. |
| Postconditions | Sensitive action is allowed or denied based on VC proof. |
flowchart LR
AUTH@{icon: "fa:shield", label: "Authority", pos: "b"} -->|Issues entitlement VC| WAL@{icon: "fa:wallet", label: "Wallet", pos: "b"}
WAL -->|Present VC| VER@{icon: "fa:lock", label: "High-risk service", pos: "b"}
VER -->|Check status| REG@{icon: "fa:book", label: "Registry/status", pos: "b"}
VER -->|Allow or deny| ACT@{icon: "fa:bolt", label: "Sensitive action", pos: "b"}
sequenceDiagram
participant Authority
participant Wallet
participant User
participant Service as High-risk service
participant Registry as Registry/status
Authority-->>Wallet: Issue entitlement VC
User->>Service: Request sensitive action
Service->>Wallet: Request proof
Wallet-->>Service: Present VC proof
Service->>Registry: Validate issuer and status
Registry-->>Service: Valid
Service-->>User: Action approved
You may also be interested in:
