Posts

TD;DR :megaphone: Announcement :megaphone: The Factorlabs Bank mobile :mobile_phone: application is now available. The primary purpose is to demonstrate the business cases for Verifiable Credentials. Visit the Factorlabs VC Bank on the Google Store at https://play.google.com/store/apps/details?id=eu.factorlabs.android.bank.wallet Details The Verified ID service was used to build a payment system. Big Picture Actors Bank Customer Uses Factorlabs VC Bank Application on the Android device. Can create a bank account. Can use bank account to pay via supported eCommerce websites. Bank System Can create a bank account for the customer. Can transfer money between accounts to support the payment process. Can return account balance. eCommerce Websites Can ask for the bank account number. Can receive the payment. Demo overview ...

TL;DR It is not easy for Entra ID Tenant administrators to choose the best authentication method for their employees, vendors, and partners. You must consider the scenario, the environment, and the passwordless technology. I’m focusing only the passwordless MFA authentication methods in the corresponding changes in the Entra ID - the MFA will be required. Side note: Microsoft announced that MFA will be required for a couple of services, like Azure Portal or CLI. The document mentions that Security defaults will force MFA or should be enabled by Conditional Access Policies for users accessing the defined services. We will see how the final implementation will look like (I promise to update the post with the final state). ...

TL;DR NoSQL is a database that can store data in a non-relational way. It is a totally different approach to data storage than SQL databases. You need some time to understant the concept, but it is worth it. Int the public cloud you can use Azure Cosmos DB, from AWS DynamoDB. The storage is fast and scalable, but remember it totally different from SQL databases. Check: Designing Data-Intensive Applications Alex DeBrie - DynamoDB Book NoSQL is amazing Check my favourite cases and build features like: ...

Tl;dr Security and privacy are paramount in today’s digital age, especially regarding personal information and interactions. One innovative approach to bolstering security in digital communications, such as phone calls, is using verifiable credentials for authentication. Details Here’s a simplified explanation of how phone call authentication via verifiable credentials works. Imagine you receive a phone call from a service provider, say your customer. Instead of going through the traditional and often tedious method of answering security questions (which could be guessed or obtained by someone else), the authentication process involves a digital handshake using verifiable credentials. ...

The underwater data centre was a proof of concept 🤖 to test a new possible way/place for servers. Please follow my story. 𝗙𝗼𝗿 𝗺𝗲, 𝘁𝗵𝗶𝘀 𝗶𝘀 𝗮𝗹𝘀𝗼 𝗮 𝗰𝗿𝗶𝘁𝗶𝗰𝗮𝗹 𝗹𝗲𝘀𝘀𝗼𝗻 𝗹𝗲𝗮𝗿𝗻𝗲𝗱: If technology is new to me, I play around with it and then build a proof of concept. The next phase for me is validation - I check the design and proof of concept with business stakeholders, architects and developers. It is easier to kill a demo or PoC than an entire project. It is easier to show the demo with limited features and small integration than only a document or a diagram. From a technical perspective, a proof of concept like this, with the physical deployment of bare metal servers underwater, is a real production deployment, like a demo. 𝗬𝗼𝘂 𝗰𝗮𝗻 𝗳𝗮𝗰𝗲 𝗮 𝗳𝘂𝗻𝗱𝗮𝗺𝗲𝗻𝘁𝗮𝗹 𝗽𝗿𝗼𝗯𝗹𝗲𝗺: ...

TL;DR You started your cloud journey with AWS and you need to authenticate your first customers, partners. You don’t want to build your own authentication service - you want to use a managed service. AWS Cognito is a great solution for you. It is easy to start with, cheap, and easy to integrate with the frontend and backend. You can start with a sample solution from AWS and workshop. ...

History 2024-06-02 - Initial version 2025-03-03 - Updated Summary TL;DR With Azure AD B2C we can authenticate users via a browser-based feature - we run the OpenID Connect flow in the browser, authenticate the user via the Authorization Code flow, and get the token. But what if we want to stay with the mobile application? On the Desktop application? With Entra External ID we can use the native authentication flow. ...

Entra External ID for Customers is a new Azure Tenant type that allows you to create digital identities for your customers. Use cases B2B partners. You can create a dedicated customer tenant for your partners and give them access to your applications, manage users and groups in the tenant without partners’ access to your organisation (workforce tenant). Your data is fully secured and isolated. Online services and web shops for your retail. Full self-service is available to sign up/sign in and manage their accounts. You can also use social logins like Google or Facebook. Product pages, helpdesk and support. Keep customer engagement and provide them with the best experience. Cross-device authentication. User-friendly experience to log in on the TV screen, medical devices, or any other IoT where you can display a QR code or PIN to log in. What is Entra External ID for Customers? In simple words, it is a new tenant type. From now you can decide Workforce or Customer type. It is a new tenant type to create - so for customers, it is separate - and not connected with your organisation’s tenant. Please remember that the service is still in preview mode - but only till the 15th of May, so only limited features may be available. Service will be GA soon!! ...

B2B scenario Protect your applications and services with identity provider service based on the OpenID Connect with Identity Federations. Your solution is a ‘family’ of services and applications in the B2B model. Your partners have their identity provider—modern services like Entra ID, Octa, Auth0, and AWS Cognito. Use cases There will be no more duplicate accounts. You can use the partner identity to authenticate with our services. The email is a unique identifier, along with the password or another authentication method you provide as a partner. We hope that you can secure your accounts. When we see a risk, we can enable MFA for the B2B partner users. ...

History Updated: 30-06-2024 Playground Entra Verified ID Workshop Do you want to try it? Use my GitHub repository to set up your credentials. Entra Verified ID Workshop You can start with my workshop and create a simple flow with Entra Verified ID. All divided into steps with the code and the explanation. Big Picture Verifiable Credentials solve problems for identities in the digital world. What does it mean? Please check the story: You own the national ID card. It is in your wallet. To get the document, you must visit the government office, provide information/documents, check your identity with your old ID, passport, or proof of birth, and wait for the document. ...