Platform architecture built for modern identity risk.
Identity Armour sits between your applications and identity providers, acting as an opinionated gateway for access decisions, telemetry, and governance.
High-level architecture
At the core of Identity Armour is an API Gateway that terminates client requests, enriches them with identity and telemetry context, and delegates decisions to the Verdikta Confidence Engine. Downstream services consume normalized identity and risk signals instead of maintaining point-to-point integrations.
Governance services manage tenants, identities, policies, and admin roles. A shared data layer—backed by a relational database—stores configuration, evaluation results, and audit records.
API Gateway
Central enforcement point for rate limits, authentication, tenant routing, and audit logging. All traffic flows through the gateway before reaching downstream services or dashboards.
Identity governance services
Manage tenants, admin users, and identity baselines in one place. Policy-aware services ensure every change is tracked and attributable.
Verdikta Confidence Engine
Evaluates telemetry, historical context, and policy inputs to produce a risk score and recommended action for each request.
Data & security model
Identity Armour is designed around clear tenant boundaries and audited access. Operator actions, configuration changes, and high risk events are captured as structured records suitable for export into SIEM or GRC tools.
- Tenant-aware data model with explicit ownership boundaries.
- Optional persistence of telemetry and audit data to your own database for full control.
- Rate limits, JWT-based authentication, and break-glass mechanisms for emergency access.