eSignet convenience

Emmanuel_Acosta · October 13, 2025, 5:16am

Hello MOSIP community,

We are designing a Verifiable Credentials (VC) ecosystem using the full Inji stack (Wallet, Certify, Verify).

For user authentication, we have a robust Identity Provider (IdP) already in place. This could be an in-house Keycloak instance or a national eID system that already supports its own secure biometric authentication. We have successfully integrated our Inji services directly with this IdP via standard OIDC.

Our core architectural question is: What is the specific value proposition of introducing eSignet as a middleware between our Inji services and our existing, biometric-capable IdP?

We are trying to pinpoint the key advantages over our current direct integration, especially considering our IdP is already feature-rich:

Federation Gateway: Is the primary benefit to abstract the direct connection, allowing us to plug in other IdPs in the future without re-engineering our relying parties?
Biometric Flow: Since our IdP already handles the entire secure biometric authentication flow (capture, matching, and response), what value does eSignet add to this specific transaction? Does it simply proxy the request, or does it enhance it in terms of security or auditing?
Enhanced Consent/Assurance: Does eSignet provide a more granular, standardized, or auditable consent and Level of Assurance (LoA) management layer than what is typically available in a national IdP or a mature platform like Keycloak?

In short, when a direct integration with a trusted, biometric-enabled IdP is working, what are the compelling reasons to add eSignet’s architectural layer?

We appreciate any insights you can share.

Thank you!

Prathmesh_Jadhav · October 13, 2025, 10:46am

Hi Emmanuel_Acosta!

Thanks for reaching out.
We are looking into your query/feedback and will get back to you soon!
Until then, happy coding with MOSIP!

Best regards,
Team MOSIP

Anusha_sunkadh · October 14, 2025, 9:16am

Hi @Emmanuel_Acosta ,

eSignet follows a plugin-based design, enabling easy integration with any national or functional ID system. Out-of-the-box, plugins are available for MOSIP and Sunbird RC. eSignet can be integrated with any existing identity system by implementing a single plugin.
eSignet does not add additional security layers to biometric capture itself. Instead, it adheres to the IEEE SA P3167 SBI 2.0 specification, ensuring biometric data is captured in a tamper-proof and confidential manner.
It also supports fine-grained, per-transaction consent collection before user information is shared with relying parties.
Additionally, eSignet implements the OpenID Connect for Identity Assurance 1.0, enabling secure request and delivery of verified claims.
Federation support is not currently available but is planned as part of our 2026 roadmap. See the roadmap for more details: https://docs.esignet.io/roadmap-and-releases/roadmap/roadmap-2025

For a comprehensive list of supported standards and protocols, refer to: https://docs.esignet.io/readme/standards

Best regards,
MOSIP Team

system · October 24, 2025, 9:16am

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
e-Signet with biometrics eSignet	1	61	April 7, 2025
How to integrate esignet with Mosip IDA eSignet	5	301	April 22, 2024
Release Announcement: eSignet v1.3.0 is here! Release announcement	3	250	April 29, 2024
Is there a available integration of eSignet to Aadhar?	2	64	November 18, 2024
I need guidance on how to integrate esignet to LDAP service	3	57	July 16, 2025

eSignet convenience

Related topics