Anu Shahi gives an overview of how First Utility is evolving its legacy identity platform to support a connected energy future, where a digital identity starts to become an entity for representing multiple relationships between devices in the home, renewable power assets and even energy relationships between your neighbours!
By connecting such identities together, and harnessing the creative power of APIs, we can deliver new and exciting scenarios that truly transform the way we engage with energy in our homes.
2. Make a copy of this doc
This is the master doc
Content
Background
One of the largest challenger
energy and broadband providers
in the UK
3. Make a copy of this doc
This is the master doc
Content
Our platform journey towards a connected energy future
4. Make a copy of this doc
This is the master doc
Content
Growth
5. Make a copy of this doc
This is the master doc
Content
Starting Point: Energy Switching
Energy
Switching
6. Make a copy of this doc
This is the master doc
Content
Energy Switching - Establishing market fit
7. Make a copy of this doc
This is the master doc
Content
Energy Switching - API View
Web App
Event Orchestration
Layer
API Key based
access control to
invoke order
service
Front Office
APIs
(Energy tariff
pricing, Sign-up)
Back Office
APIs
(Billing, Payments,
Customer Details,
Order Processing,
Energy Switching
Flows…)
8. Make a copy of this doc
This is the master doc
Content
Energy Management
Energy
Switching
Energy
Management
9. Make a copy of this doc
This is the master doc
Content
Energy Management - Introducing users
10. Make a copy of this doc
This is the master doc
Content
Energy Management - API View
Web App
Mobile App
API
Gateway
LDAP
Token
store
access
token
(bound to
user)
auth
Validate token and pass
through to relevant service
Back Office
APIs
(Billing, Payments, Customer
Details, Order Processing, Energy
Switching Flows…)
OAuth 2.0
(password grant
type)
11. Make a copy of this doc
This is the master doc
Content
Energy Engagement
Energy
Switching
Energy
Management
Energy
Engagement
12. Make a copy of this doc
This is the master doc
Content
Energy Engagement - Making energy visible
13. Make a copy of this doc
This is the master doc
Content
Energy Engagement - Usage Comparisons
14. Make a copy of this doc
This is the master doc
Content
Energy Engagement - API View
Web App
Mobile App
API
Gateway
Energy Usage
Token
store
Similar Homes
Comparison
My Energy
Profile
Smart Meter
Management
Smart Meters
Fine grained
mappings to
microservices API
15. Make a copy of this doc
This is the master doc
Content
Broadband
Energy
Switching
Energy
Management
Energy
Engagement
Broadband
16. Make a copy of this doc
This is the master doc
Content
Introducing Broadband - Our second core product
17. Make a copy of this doc
This is the master doc
Content
Rethinking Identity
We had to rethink our
identity model and
decouple it from a single
energy account
Energy
Account
(Current)
Digital Identity
18. Make a copy of this doc
This is the master doc
Content
A Better Digital Identity Model
This allows us to model
identity as an
interconnection of
different entities centred
around the user
...future services/products
Digital Identity
19. Make a copy of this doc
This is the master doc
Content
Provisioning A New Identity
Core Digital Identity DomainDigital Identity
Management API
User Provisioning
Identity Provider
Create digital identity for
new user Add root node
Add user (email,
digital identifier)
SCIMAPI
digital identifier
User Management
DSE Graph
digital identifier = uuid
20. Make a copy of this doc
This is the master doc
Content
Connecting new services
Digital Identity
Management API
Energy Provisioning
Add energy node
connect
(energy, digital identifier)
Core Digital Identity Domain
(DSE Graph)
Broadband
Provisioning
connect
(broadband, digital identifier)
Add broadband node
21. Make a copy of this doc
This is the master doc
Content
Importance of the digital identifier
Identity Provider
OAuth Client
Credential
Store
Core Digital Identity
Domain
(DSE Graph)
Authentication
Token Management
API Gateway
Authenticate (email,
password)
digital identifier
Authenticate (email,
password)
tokens minted with
digital identifier
my/broadband(token)
Introspect token and
resolve digital identifier
Lookup identity for
broadband services
Make downstream API
calls
Lookup identity
(digital identifier)
Digital Identifier
22. Make a copy of this doc
This is the master doc
Content
Moving towards a central IDP
...future services/products
Mobile App
(OAuth via App Auth
and pixie)
IDP (Curity)
Web Apps
(OAuth Clients)
API Gateway
Micro-services
introspect token
Aurora
(AWS)
Authentication
Token Management
User Management
Validate and forward
requests
OAuth 2.0 Authorisation Code Flow (OpenID
Connect)
Single Sign-On
23. Make a copy of this doc
This is the master doc
Content
We chose Curity!
...future services/products
Based on open standards
(Open ID Connect, OAuth
2.0, SCIM)
Easy to operationalise as
everything can be configured
using APIs!
Flexible. Very straightforward
to mint custom tokens,
configure templates and add
new authentication strategies/
backing stores
Integration hooks. Event
listeners can be registered
easily
(e.g. doSomething when user
activates their identity)
24. Make a copy of this doc
This is the master doc
Content
One of our best partnerships and entirely over Slack...
25. Make a copy of this doc
This is the master doc
Content
Connected Energy
Energy
Switching
Energy
Management
Energy
Engagement
Broadband
Connected
Energy
26. Make a copy of this doc
This is the master doc
Content
Connected Energy - The energy future
...future services/products
monitor and control
Connect digital identity to
energy assets and
appliances
Electric vehicles
Electricity grid
Battery storage
Appliances
Renewable energy
Renewable energy
Unified view of connected
energy
27. Make a copy of this doc
This is the master doc
Content
Microgrids - Connecting your neighbours
...future services/products
Trading of excess energy at the
edge of the grid
28. Make a copy of this doc
This is the master doc
Content
Thanks for listening!