Notifications
Clear all
Topic starter
24/06/2026 6:56 pm
TL;DR: Identity verification, passwordless authentication, and digital identity wallets for AWS environments are now available through AWS Marketplace, streamlining procurement and deployment according to 1Kosmos. The change matters because verified-user authentication can reduce account takeover and service desk fraud, but it does not remove the need for strong IAM governance.
NHIMG editorial — what this means for NHI practitioners
Questions worth separating out
Q: How should security teams govern passwordless identity verification in AWS environments?
A: Treat passwordless access as one control in a broader identity programme, not as a replacement for governance.
Q: Why do verified identity and passwordless access still need IAM controls?
A: Because strong authentication does not automatically define who should have access, for how long, or under what conditions.
Q: When does faster cloud procurement create identity governance risk?
A: It becomes risky when buying and deploying security tools is easier than updating access policy, ownership, and review processes.
Practitioner guidance
- Map verified identity to downstream policy decisions Ensure the output of identity proofing is consumed by IAM and access policy systems, not left as a standalone profile used only at enrolment or login.
- Review recovery and enrolment flows for assurance gaps Test password reset, device recovery, and step-up paths to confirm they do not bypass the same phishing-resistant standard used for primary access.
- Align AWS procurement with identity governance controls Before using Marketplace to accelerate deployment, confirm ownership for recertification, offboarding, exception handling, and access review remains explicit.
What's in the full announcement
1Kosmos's full article covers the operational detail this post intentionally leaves for the source:
- Marketplace purchase and deployment path details for AWS customers
- Product-specific capability descriptions for identity verification and passwordless MFA
- The vendor's own explanation of how the platform integrates with existing identity infrastructure
- The direct source announcement and publication context from 1Kosmos
👉 Read 1Kosmos's AWS Marketplace announcement for identity verification and passwordless access →
AWS Marketplace identity verification: what changes for IAM teams?
Explore further
25/06/2026 3:59 am
AWS Marketplace availability changes procurement, not identity assurance. Moving identity verification into Marketplace removes some friction, but the core governance question remains whether the organisation can consistently bind access to a verified person across systems, channels, and recovery paths. The procurement channel is easier; the assurance model still has to be enforced. Practitioners should treat this as a distribution change, not a control redesign.
A few things that frame the scale:
- 97% of NHIs carry excessive privileges, increasing unauthorised access and broadening the attack surface, according to Ultimate Guide to NHIs.
- Only 5.7% of organisations have full visibility into their service accounts, according to the Ultimate Guide to NHIs.
A question worth separating out:
Q: What should teams check before adopting marketplace-delivered identity tools?
A: Confirm that the tool integrates with your existing identity architecture, supports your assurance requirements, and has clear owners for enrolment, recovery, recertification, and offboarding. If those responsibilities are unclear, the deployment will be faster but not better governed.
👉 Read our full editorial: AWS Marketplace availability changes identity verification procurement
