Ubisecure offers a full stack platform, API and toolkits to build secure, seamless experiences for customers. We simplify the most complex customer identity, delegation and security challenges faced when building applications.
Ubisecure offers highly innovative services built on the Identity Platform for specific identity related challenges. The Identity Platform can also be deployed to the Cloud for Customer IDaaS projects.
Powerful Delegation Solutions
What Industry experts say about Ubisecure
The Ubisecure Identity Platform is delivered as a single integrated IAM suite that provides both Web Access Management and Identity Federation capabilities with a fully integrated database and application server.
The Ubisecure Identity Platform is a critical component of the eHealth service as its functionality provides Swedish citizens with very easy to use process for accessing their health records.
CTO and Head of Cloud Services Capgemini
The Ubisecure Identity Platform has helped us realise a unified IAM solution for both consumers and corporate customers, creating an environment where you only need one identity.
Director of IT-production DNA
Latest from the Blog
- Here’s what you missed at APIdays Finland 2019June 12, 2019Towards the end of the 19th century, the technology world was focused on electricity generation, and in Vanhakaupunki (the old settlements of Helsinki at the Vantaa river rapids) the city’s first hydropower plant was built. Nearly 150 years later, this place (now the Museum of Technology and Koskenranta) hosted a conference discussing a catalyst of today’s technology and business: APIs (Application Programming Interfaces). APIdays Finland 2019 took place on Tuesday 4 and Wednesday 5 June. The event — organised for the second time in Finland — was part of a series of conferences APIdays has been running since 2016. Here’s what you missed — unless you were there this year! Broad range of use cases Vesa Pirinen, VP Strategy, Paving, from construction company YIT delivered the opening keynote and presented on how IoT is helping to gather data from industrial equipment to help streamline operations. The use case focused on improving the efficiency of aggregate crushing plants. His talk highlighted that in commodity markets, the level of efficiency of the team work can mean the difference between today being a profitable day or not. Collecting and aggregating data from the field in almost real-time is key to this process. HiQ CTO Aspo Urpilainen demonstrated a taxi service API and showed how FRENDS can use JWT (JSON web token) attributes from an OpenID Connect session to ensure the business logic works as expected, such as to prevent the same user from accidentally calling two taxis. FRENDS is a powerful integration tool and works with the various standards-based APIs that the Ubisecure Identity Server publishes. Other interesting use cases follow… Petsofi CEO Laura Laakso showed how society can benefit from a platform that brings together researchers who treat rare animal cases with veterinary clinics and animal owners. In her talk, I learned that the animal business is a larger market than cybersecurity, but is underserved by investors. Sensotrend CEO Mikael Rinnetmäki shared his story about creating a self care platform for people with diabetes, and some experiences from the FIHR-based Finnish Kanta PHR (personal health record) ecosystem. Isabelle Reusa talked about APIs in the media business and showed the three levels of APIs in media from less to more open: The Guardian, the Financial Times and the Getty Images model. Her core message for all media companies: open API or die. Technical sessions Ubisecure VP Customer Success Keith Uber gave a talk about the Finnish Trust Network. First, he shared two personal stories: the day he became a Finnish citizen and the day he got married. Both happened in Finland, and in the two cases the procedure and issued certificate were paperless – fully digital. Indeed Finland is one of the world-leading digital societies thanks to the use of strong verified identities, in which bank authentication (TUPAS) has been prevalent for years. In order to follow international standards in cybersecurity and digital identity, from October 2019 Finland will require commercial services to use the Finnish Trust Network (Luottamusverkosto) for strong authentication. Right after the talk, Keith and I hosted a hands-on workshop “Connect your application to Finnish Trust Network” with around 20 very engaged participants. In the workshop, the participants installed a single page application on their own laptops that connected to Finnish Trust Network using OpenID Connect. We even were able to help one of the workshop attendees connect their integration tool, Integromat, to the Finnish Trust Network. Janne Nieminen from Digia presented a powerful presentation summarising their experience of API management in modern infrastructure. He gave examples of multi-cloud environments, highlighting that often a common platform across clouds is required. As important as making it easier to publish new APIs, is the importance of monitoring the quality. Companies also need to consider automated ways of enforcing both technical and non-technical requirements of APIs: automated checking of the published documents, checking if the API ships full documentation, checking if there is a well-identified owner and if it meets all of the agreed style guide rulesets. As a takeaway, Janne recommended using the API audit checklist from apiopscycles.com to validate APIs. And it is good to see OpenID Connect and JWT support on that checklist! The API economy There were a few insightful talks about the API Economy, including Alan Glickenhouse (IBM), Allan Knabe (KONE) and Mohan Naidu (Avanade). However, the best mix of ideas came from Marjukka Niinioja, organiser of this event and co-author of the book API Economy 101. Marjukka’s first shared confession was “I wish someone had given me a magic API wisdom pill 10-20 years ago.” But today she is the one giving the wisdom pill to many of us building APIs. Unlike the common practice, Marjukka argues that organisations must embrace the equation: API = All People are Important. In other words, all roles in an organisation (CEO, design, business development, operations, marketing, information security, etc.) must work together to design and plan the APIs, not only the developers. She remarked on the importance of tools and methods like API Business Model and API Canvas to achieve results. The highlights of APIdays Finland 2019 Broad range of use cases from different industries: construction, media, animal business, journalism, banking, real estate, mobility, healthcare, e-government, and more. Both technical and business-oriented topics, plus hands-on workshops. Emphasis on the importance of the API Economy. The presence of the European Commission, which also gave a workshop on digital government APIs. Want more? Attend some of the upcoming APIdays conferences: APIdays Amsterdam on June 18 & 19, APIdays San Francisco on July 16 & 17, APIdays Melbourne on September 19 & 20, and the list continues. If you missed Ubisecure’s workshop and want to learn more about migrating from TUPAS authentication to the Finnish Trust Network, please get in touch....
- 10 Years of Kantara with Colin Wallis – Podcast Episode 1June 7, 2019https://media.blubrry.com/identitypodcast/p/content.blubrry.com/identitypodcast/LTDI_01_-_10_years_of_Kantara_with_Colin_Wallis_v02.mp3Podcast: Play in new window | DownloadSubscribe: Android | RSS | MoreLet’s talk about digital identity with Colin Wallis, Executive Director of Kantara. Welcome to the very first episode of Let’s Talk About Digital Identity! Today we’re keeping up with the Kantarians, as they celebrate Kantara’s 10th anniversary. Join Oscar as he chats with Colin Wallis, Executive Director, about the Kantara Initiative, how they’re different to other associations, their consent receipt project (which Ubisecure is involved in), and the main challenges in digital identity – present & future. Links mentioned in the podcast: standardlabel.org kantarainitiative.org www.kantarainitiative.eu www.linkedin.com/company/kantara-initiative/ About Colin Wallis Colin leads the Kantara Initiative Inc. a globally acknowledged ethics based, mission-led Trust Framework Operator of conformity assessment and Trust Marked schemes for Identity, Credential and Consent Management Service Providers, and the only 3rd party assessor of services seeking conformance with NIST 800-63-3 IAL2/AAL2. Kantara’s open and inclusive philosophy to community development attracts the leading edge of identity and privacy innovation in its Working Groups that in turn attract R&D and sponsored funding. Colin develops and executes the strategic plan in concert with the Board and Leadership Council, driving the organization forward with the help a dedicated band of expert volunteers. Colin’s combined public and private sector background in online identity and privacy continues to ensure that the Kantara Initiative program is aligned with multiple eGovernment strategies in Australia, Canada, New Zealand, Sweden and the US while influencing others in Europe and around the world. Building on 15 years of contribution to international standards and consortia, Colin maintains other leadership positions across the consortium space in Information Security, Privacy and Trusted Identity. He represents Kantara on the OECD’s ITAC (Internet technical Advisory Committee) and is a Board Director of the US NSTIC IDESG. He resigned his role as NZ’s HoD in ISO JTC1 SC27, his Board post on the Cloud Security Alliance’s (CSA) NZ Chapter and his positions in OASIS all linked to his public service employment in New Zealand before moving to the UK early in 2016 to run Kantara. Colin was named in OWI’s Top 100 Influencers in Identity in 2018 About Ubisecure Ubisecure provides feature rich customer identity management software and services. The company provides a powerful Identity Platform and Identity Cloud to connect customer and citizen digital identities with customer-facing applications. The platform consists of productised Customer Identity & Access (CIAM) middleware and API tooling to enable single digital identity benefits across multiple applications. Features include single sign-on (SSO), multifactor authentication (MFA), authorisation workflows, user identity management, and pre-established connections to dozens of third-party identity providers (social, mobile, and verified). Find out more: www.ubisecure.com/about...
- Ubisecure at the European Identity and Cloud Conference 2019May 24, 2019Last week, a few members of the Ubisecure team attended the European Identity and Cloud Conference (EIC) 2019, hosted by KuppingerCole Analysts. The event took place in Munich, at the swanky INFINITY Ballhaus Forum, from May 14th to 17th, and featured around 1000 delegates from all over the world working in digital identity. In an industry that thrives on sharing information and best practice between practitioners, competitors or otherwise, there is a real sense of community at these fixtures in the identity business calendar. It’s always great to see familiar faces, including our partners such as Nixu, and to catch up over a Bavarian beer after a jam-packed day of workshops and talks. Learning As regular attendees of the EIC, we’ve noticed the progression in key themes throughout the years. Last year, blockchain was all the rage. This year, artificial intelligence took centre stage. We spoke about a wide variety of use cases of artificial intelligence in digital identity, including the security of personal assistants (Alexa, Google Assistant) and behavioural analytics for risk-based authentication. What will next year’s hot topic be? Comment below! Sharing knowledge Ubisecure’s VP of Customer Success, Keith Uber, is well-known in the digital identity industry. He is an active member of the Kantara Initiative, an industry association celebrating 10 years this year, and therefore gave joint talks and workshops on Kantara and their exciting Consent Receipt project. The Consent Receipt project aims to make digital ‘receipts’ available for individuals opting in to a privacy agreement, in the same way that customers of a financial transaction receive a receipt. Keith demoed the personal data receipt, showing how it would enable customers to view timestamps, the contents of the privacy notice you accepted, what data was collected for what purposes, conditions like ‘delete-by-date’ instructions, and other useful facts. ‘Best Consumer Identity Project 2019’ Wednesday evening brought us the European Identity & Cloud Awards ceremony, judged by KuppingerCole Analysts and honouring outstanding Identity Management and Security Projects. To our delight, the Best Consumer Identity Project award went to our customer, Telia Company, for our joint project on the Telia Identification Broker Service. This is a Nordic and Baltic, cross border, one-stop platform for customers’ strong digital authentication needs as a single service, with Ubisecure’s Identity Platform at its core. View the press release for more details. And Telia weren’t the only Ubisecure customer to win big – the Finnish Transport and Communications Agency, Traficom, won the award for the ‘Best Blockchain ID in Consumer Identity Project’, representing yet another fantastic achievement for Finnish thought leadership. Upcoming events We’ll also be at the following events in the next few weeks: API Days – June 4-5, Helsinki, Finland InfoSecurity Europe -June 4-6, London Olympia Think Digital Identity for Government – June 7, Westminster, London Identity Week – June 11-13, London Excel Meet us there!...