<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=7267665&amp;fmt=gif">
Securing B2B and B2C platform with Passkeys
Product
Web platforms
Services
IAM Enterprise security Passkey
Industry
Renewable Energy

About the client

SENEC is a leading innovator in the energy sector and a wholly owned subsidiary of EnBW, one of Europe’s largest energy supply companies. The company specializes in creating intelligent home energy ecosystems, branded as SENEC.360, that integrate photovoltaics, energy storage, and e-mobility. Their mission is to evolve beyond basic hardware manufacturing and provide a comprehensive platform that empowers homeowners to achieve complete energy independence. A digital "cockpit" gives users and partners full control over the energy system and drives the user experience.

 

Our Solutions

This project redefined the authentication experience for SENEC, a leading innovator in intelligent home energy ecosystems and EnBW subsidiary. We implemented a secure, passwordless login solution using Passkeys across their entire digital ecosystem. This simplified access for homeowners managing energy storage (B2C) and certified partners handling fleet installations (B2B). By integrating this technology into the SENEC.App and professional web portals, we replaced traditional passwords with biometric verification, enhancing security and convenience for thousands of users.

"With numerous clients and partners to serve, we needed a login method that was fast and convenient for them—above all, secure. It also had to align with our organization's internal goals and direction. That's why the open-source Passkeys solution with Keycloak—selected and customized by Unravel—gives us the full flexibility we were after.”

Piyush Sardana

EDS Lead Architect at SENEC GmbH

Security:

  • Keycloak (Open Source)

  • Passkeys (FIDO2 / WebAuthn), 2FA (Two-Factor Authentication without SMS)

Mobile Platforms:

  • iOS (Native libraries/solutions, focusing on iOS 17 and supporting ~5 years back)

  • Android (Native libraries/solutions)

Device Management & Security:

  • MDM (Mobile Device Management),

  • UEM (Unified Endpoint Management)

Cloud & Infrastructure:

  • Hosting: Microsoft Azure (Managed IAM Cluster).

  • Orchestration: Kubernetes (AKS). Keycloak is deployed as a StatefulSet to ensure high availability, reliable session caching, and data consistency across the cluster.

  • Scalability: horizontal auto-scaling configuration to handle peak load from B2C (homeowners) and B2B (partner fleets) traffic.

Why Keycloak?

Keycloak stands out as the ideal platform for implementing passkeys, combining flexibility, cost-efficiency, and control. As an open-source solution, it eliminates expensive licensing fees tied to proprietary identity providers, limiting costs to server infrastructure and initial DevOps setup. Its adaptable architecture simplifies migrations and integrates seamlessly with native iOS, Android, and web environments, ensuring smooth deployment. Crucially, Keycloak allows organizations to maintain full ownership of their security infrastructure, keeping long-term maintenance and data control within internal IT teams rather than relying on external SaaS vendors.

For SENEC, we chose Keycloak because it delivers:

  1. Uncompromising security: Remove the weakest link - passwords. Passkeys protect users from phishing, credential theft, and brute-force attacks, providing robust security across all platforms.

  2. Instant, Frictionless Access: Log in with a touch or a glance. Biometric and device-based authentication reduces login time to seconds, enhancing the user experience with zero friction.

  3. Reduced Support & Operational Costs: No more password resets. Eliminating the primary cause of login failures lowers helpdesk tickets, reduces operational costs, and streamlines onboarding and daily access.

  4. Seamless Cross-Device Sync: Passkeys synchronize securely across trusted devices, giving users consistent, privacy-focused access to their accounts on any platform.

Impact

The implementation of passkeys significantly improved authentication efficiency, decreasing the average login time by approximately 70%, from under 20 seconds to under 5 seconds, effectively removing the friction of manual typing and SMS delivery waits. Security posture was strengthened by eliminating shared secrets, achieving 100% phishing resistance on all passkey-enabled accounts. This change also improved conversion, with first-attempt login success rates rising to over 95%, leading to a notable reduction in abandonment compared to legacy password and OTP methods. Additionally, the volume of "Forgot Password" tickets decreased substantially, lowering help desk expenses and enabling IT staff to focus on strategic initiatives.

Explore more projects

Envision the future
of your digital product.

Book free consultation