The SENTINEL Identity Management System (IdMS), developed by ITML, is a modular, privacy-aware identity and access management platform designed for seamless, EU-wide digital identity federation. Built to support GDPR-compliant data sharing and the MyData paradigm, it empowers users with full control over their data, roles, and access rights across connected third-party services and applications. The solution ensures that digital identities are secure, centralized, and interoperable — whether for individuals, SMEs, or larger enterprises.

Users can manage their identity lifecycle independently — from registration to account recovery, credential updates, and consent management — through self-service interfaces. The authentication layer supports multi-factor authentication (2FA) and enforces fine-grained access policies using RBAC. Meanwhile, the Data Access Gateway ensures that only authorized, contextual, and purpose-bound access to personal data is permitted, through secure token mechanisms and strict data segregation by requesting application.

At the core of the system are six pillars:

• self-service identity management,
• token-based authentication,
• role-based access control (RBAC),
• federation with third-party apps,
• MyData-based data storage, and governance.

The platform is built using open-source technologies like Keycloak and supports OpenID Connect, OAuth 2.0, and SAML 2.0 protocols, making it highly integrable and adaptable to existing IT ecosystems. The architecture supports layered network segmentation (public, protected, and private DMZs) to isolate identity services, secure data adapters, and sensitive data repositories. In addition, Single Sign-On (SSO) functionality ensures that users can seamlessly authenticate across multiple services in the SENTINEL ecosystem with one login. The system is designed for scalability, ensuring that even complex federated access scenarios remain manageable and auditable.

Finally, the platform embeds governance features that monitor and analyze access patterns in real-time, helping to detect unauthorized activity, enforce compliance, and reduce operational risk. This makes the SENTINEL IdMS an ideal foundation for secure digital identity and access control in modern, interconnected digital environments.