A multi-tenant biometric identity SaaS that is already running in production. Every login is confirmed with your own biometric data, behind a single “Sign in with FIVUCSAS” button. It plugs into any app the way e-Devlet or “Sign in with Google” do, only here the identity proof is biometric, and you can host the whole thing yourself.
Multi-tenant biometric authentication platform. Clients reach a single Traefik edge; only the
Identity Core API is public; the Biometric Processor is internal-only (Docker network + X-API-Key),
and the two external comms providers are called solely by the Spring API.
docker compose up.| Feature | FIVUCSAS | Auth0 / Okta | AWS Rekog. | Azure Face | Apple Face ID | FaceTec |
|---|---|---|---|---|---|---|
| Active Liveness | ✓ | ✗ | ✓ | ✓ | ✓ | ✓ |
| Passive Liveness | ✓ | ✗ | ✗ | optional | ✓ | ✓ |
| On-Device Liveness | ✓ active | ✗ | ✗ cloud | ✗ cloud | ✓ full | hybrid |
| OAuth 2.0 / OIDC | ✓ | ✓ | ✗ | ✗ | ✗ | ✗ |
| NFC Document | ✓ | ✗ | ✗ | ✗ | ✗ | ✓ |
| Composable MFA | ✓ 10 factors | 6 factors | ✗ | ✗ | ✗ | ✗ |
| Voice Biometrics | ✓ | ✗ | ✗ | ✗ | ✗ | ✗ |
| Self-Hosted | ✓ | ✗ | ✗ | ✗ | device only | ✓ (SDK) |
| Multi-Tenant SaaS | ✓ | ✓ | ✗ | ✗ | ✗ | ✗ |
| No GPU Required | ✓ | n/a | cloud GPU | cloud GPU | neural engine | CPU/GPU |
FIVUCSAS reads the contactless chip in Turkish national ID cards and biometric passports — documents following the ICAO 9303 standard, now used by 150+ issuing states. The chip carries a signed photo, MRZ and a tamper-evident hash of every data group.
We ran a thorough, hands-on evaluation across recognition accuracy, cross-dataset robustness, real-time performance, liveness, and resistance to attacks. Tested on 1,342 enrolled face images across 100 identities and 12,062 verification pairs across three independent public benchmarks (LFW, AgeDB-30, CFP-FP).
FIVUCSAS shows that production-grade, KVKK / GDPR-compliant biometric authentication can run on ordinary, CPU-only hardware, and ships both as self-hostable open-source and as a managed SaaS.