Status: Closed beta (launching soon)
Identity is the “front door” of your system, but for most enterprises, that door is either a fragile on-prem legacy gate or a cloud-only service that can’t reach your local servers.
Kanshin is a Hybrid Identity-as-a-Service (IDaaS) built for the way modern businesses actually operate: a mix of cloud speed and on-prem reality.
The Core Problem: The “Stale Seat” Tax
Most identity providers charge you per user, per month. You end up paying for thousands of “stale seats”—users who haven’t logged in for months but still sit on your bill.
The Kanshin Approach: We believe you should only pay for identity when it’s actually being used. We’ve moved away from rigid per-seat licensing to an Event-Based Model. You pay for logins and registrations, the actual moments of value, not for the data sitting in your database.
Hybrid-Native Architecture (Outbound-Only Sync)
The biggest hurdle in hybrid cloud is the firewall. Traditionally, if you wanted your cloud identity provider to talk to your local Active Directory or LDAP, you had to open a hole in your network. Kanshin solves this using NATS Leaf Node technology.
No Inbound Holes
Our bridge creates an outbound-only connection to the Kanshin cloud.
Live Synchronization
Changes in your local directory sync to the cloud (and vice versa) in real-time without compromising your perimeter security.
Resilience
If the internet goes down, the local leaf node continues to handle authentication for your local applications.
Product Features
- Universal Authentication (Closed Beta)
Standard-compliant OIDC (OpenID Connect) and OAuth2 flows that work seamlessly with Web, iOS, Android, and IoT devices.
- The Developer Sandbox (Closed Beta)
We hate testing identity flows as much as you do. Kanshin includes a Dev Realm: A free, non-persistent environment for rapid prototyping.
Integrated Test Mailer: A built-in service to register accounts and validate email verification flows without using real email addresses or third-party services.
On-Prem LDAP/AD Adapter (Coming Soon / V2) Our “Bridge” service that maps legacy directory structures into modern JSON claims. This allows you to modernize your app stack without having to migrate your entire user database first.
Advanced MFA & Biometrics (Coming Soon / V2) Support for hardware keys (YubiKey), TOTP, and biometric passkeys synthesized directly into your login flow via the Mushin Workbench.
Built for the Distributed World
- Kanshin isn’t just an “add-on” to the Nandeshou Suite; it is the foundational logic for AethOS and Omni.
- Whether you are managing a Software Defined Building (SDB), a High-Frequency Trading floor, or a global remote team, Kanshin ensures that identity is verifiable, deterministic, and most importantly cost-effective.
Ready to Secure Your Logic?
