Skip to main content

Credential Intelligence

The credential intelligence feature enhances security by identifying compromised passwords used to access protected systems. It detects if a password has been exposed in data breaches, thereby reducing the potential attack surface by notifying the affected user and requiring a password change during the registration or sign-in process.

The password login and registration flows are managed by a dedicated realm in the Example project. Its realm is called “password-realm” in the configuration and its entry point is accessible on https://login.<your-domain>.getnevis.net/demo/password-app.

When a user sets or uses a password to sign in or register, the hash of the password is compared against a hashed list of compromised passwords provided by a 3rd party service (haveibeenpwned.com). If a match is found, the user is notified and can change the password immediately. The system can be configured to force the password change or to let the user skip it.

Nevis Identity Platform Example Project Credential Intelligence

Nevis ID also contains a pre-configured project template for credential intelligence. To learn more about it, see Credential Intelligence project template documentation.