NIST Special Publication 800-63 provides an effective framework for confidence in digital identity. Divided into Identity Assurance (IAL), Authentication Assurance (AAL), and Federation Assurance (FAL) levels, its practical framework enables organizations to evaluate risks first before selecting appropriate assurance levels.
TrustSwiftly meets IAL3 requirements through live sessions with on-site attendance, document authentication against authoritative sources and biometric matching with claimed digital identities to prevent impersonation attacks. TrustSwiftly achieves this through chat, video conferencing and facial recognition with liveness detection for step-up reproofing.
Document Verification
IAL3 verification offers stronger protection from SIM swaps, MFA bypasses and impersonation by securely linking biometrics with digital identities claimed by individuals. To accomplish this task requires direct observation during IAL3 identity proofing sessions as well as document validation against authoritative sources as well as biometric comparison between claimant’s physical face and biometric matching with claimed digital identities – an approach proven effective at both reducing fraud and increasing security.
TrustSwiftly’s identity proofing journey meets these standards with chat, video, facial recognition with liveness detection and document authentication support, step-up reproofing based on risk – enabling organizations to balance business and security objectives while decreasing cyber liability insurance costs and operational expenses from password resets while simultaneously decreasing attack surface area.
TrustSwiftly meets FedRAMP high compliance and offers multiple remote NIST 800-63A IAL3 verification methods including mobile driver’s license verification and validating credentials. In addition, authoritative data sources are connected in order to validate numerous attributes such as name, address, phone numbers, ID numbers and Social Security Numbers (SSNs).
Biometric Comparisons
NIST 800-63A IAL3 verification, the highest level of digital identity guidelines, establishes how likely it is that an online identity corresponds with real world identification. This requires in-person proofing sessions attended by trained CSP representatives as well as collection of at least one biometric attribute – this rigorous process helps prevent fraud losses while guarding against increasingly sophisticated social engineering attacks.
An on-site IAL3 verification session involves conducting physical (and optionally biometric) comparisons by CSP-trained personnel comparing live applicants against facial image photographs taken of them using validated evidence collected. Remote identity proofing processes allow this comparison to be made via live capture of applicant faces with liveness detection technology.
TrustSwiftly can assist CSPs with meeting IAL3 requirements with our scalable IAL3 compliant solution, such as step-up reproofing based on risk and remote credential issuance. In addition, we offer facial image captures with liveness detection support; various ID&V evidence types; weak validation strengths (weak to superior); as well as stringent chain-of-custody procedures.
Liveness Detection
IAL3 verification seeks to align validated proof for claimed identity with physical and live existence of applicants, either via visual comparison of facial images captured during in-person verification process or using automated capabilities for liveness detection when proofing remotely and without enrollee present.
The IAL3 Digital Identity Guidelines are the cornerstone of modern security, emphasizing rigorous identity proofing and strong, phishing-resistant authentication. Furthermore, they promote safe federated identities by linking biometrics securely with claims of digital identities.
TrustSwiftly assists organizations in attaining IAL3 compliance and FedRAMP high assurance by offering an authentication journey using multiple remote NIST IAL3 verification methods such as chat, video, facial recognition with liveness detection and document authentication. This strengthens protection against impersonation and fraud as well as reduce cyber liability premiums, operational costs and attack surface area; lowers RP cyber risk and improves KYC/AML screenings.
Passwordless Authentication
TrustSwiftly meets NIST 800-63A IAL3 requirements for AAL2 and IAL3 verification by being password-free authentication solution, giving customers a more seamless user experience while you reduce cyber liability insurance premiums as well as operational costs by eliminating password reset requests.
Identity Assurance Levels (IALs) indicate the degree to which digital identities claimed by someone correspond with real identities in real life. They range from IAL1, which does not require linking an actual person, up to IAL3, where in-person verification may be necessary for accurate identity confirmation.
TrustSwiftly’s ID&V processes meet NIST 800-63-4 standards by employing a step-up reproofing model based on risk, as well as supporting multiple modalities such as chat, video, facial recognition with liveness detection and document authentication.
Together these provide a strong and efficient verification process that effectively prevents highly-scalable attacks such as image manipulation, theft or repudiation while offering protection from highly scalable attacks such as image tampering or theft or repudiation; furthermore we support pixel counts to combat high spoofing resistance as well as secure connections that eliminate malware threats.
