Innovative architecture
Maximum security

A unique platform

Memority is a single platform with three offerings: My-Identity, My-Access and My-Keys. These three offerings share several services: data backend, cross-functional services, administration portal, functional portal, and so on.

Read more

Thereby, should a customer already use one of the offer, subscribing to another one does not require any real implementation project, but simply activates the functionalities, as the identities are already managed in the platform.

Lire moins

Micro-service and cloud native

Memority has been developed on microservices approach, enabling each rendered function to be specialized. This architecture facilitates maintenance, operation, version update and security.

Read more

The Memority platform relies on our Cloud providers’ own services, to take advantage of their performance. All micro-services are deployed on a container-based architecture.

Lire moins

Multi-tenant at application level

The Memority platform is a multi-tenant architecture. Multi-tenancy is managed at the micro-service level, not at the container level. Each micro-service works for all the client tenants deployed on the platform. Consequently, segregation between application tenants is carried out at application and data backend level.

Read more

Each customer has two tenants: a production tenant and a non-production tenant. They are located on two separate Memority platforms, with the same SLA levels. This innovative architecture enables Memority to adapt to both large accounts and middle-market companies, ensuring the best cost/value ratio.

Lire moins

Blue/green version update

Our development teams work in agile mode and are organized into feature teams. The platform is updated every three weeks. These updates are carried out by redeploying the microservices on a second architecture and switching between the old and new architectures.

Read more

This process ensures risk-free, transparent version upgrades for our customers. Thanks to our multi-tenant architecture, each update is carried out simultaneously for all customers.

Lire moins

Resilience

The Memority platform is systematically deployed on a region of one of our Cloud providers, which means that Memority is deployed on three datacenters all operating in active mode to offer maximum availability. As an option, we offer a DRP (Disaster Recovery Plan) to another region of the same Cloud provider.

Read more

In a nearby future, the DRP option will be offered to a different Cloud provider, to cover any failure of one of them.

Lire moins

Non-intrusive architecture

All Memority components are deployed in the Cloud. We do not deploy any components on our customers’ information systems. We are fully responsible for the availability and operation of the platform, thus avoiding a complicated RACI between supplier and customer.

Read more

Access to the customer’s information system for on-premise application provisioning is via IPSec tunnels and secure interface contracts. Exchanges with the rest of the ecosystem are made via REST APIs and standard identity federation protocols: SAML2, WS-Federation, OAuth, OpenID Connect.

Lire moins

Performances & SLAs

Thanks to its innovative architecture, Memority has been tested for up to 100 million identities within a single tenant, while providing service to other tenants on the same platform. The architecture is highly scalable, thanks to the dynamic addition of micro-services instances.

Read more

Memority is committed to a monthly availability SLA of 99.95%. Availability on our current cloud providers is 100%.

Lire moins

Hosting

Memority currently propose two Cloud providers:
• AWS for deployment in the Paris or Dublin regions
• S3NS for the Paris region. S3NS is the JV between Thales and Google. It provides a trusted cloud that will be SecNumCloud certified by 2025.

Custom architecture

Our customers are able to choose different architecture options:
• choice of Cloud provider: AWS or S3NS, or possibly GCP
• choice of region: Dublin, Paris, or possibly another region
• choice of shared or dedicated platform architecture
• choice of DRP or not
• choice of escalation to customer SOC.