Mobai and Keesing Technologies partner on ID verification

Mobai and Keesing Technologies partner on ID verification

Mobai AS and Keesing Technologies team up to prevent identity fraud and enhance KYC processes by launching frictionless end-to-end identity verification. The partnership adds cutting-edge face verification technology to one of the world’s premier identity verification platforms, providing a highly secure and trusted means of customer screening and onboarding for both on-site and remote settings.

Mobai, provider of leading biometric solutions, and Keesing Technologies, a leading global identity verification provider, announce a partnership to support businesses all over the world to securely onboard customers face-to-face as well as online with seamless end-to-end identity verification. By joining forces, they offer (online) service providers a frictionless and highly secure Know-Your-Customer (KYC) process that is based on Keesing’s trusted identity verification and state-of-the-art face verification technology from Mobai.

In 2019, Keesing introduced biometric technology to its roster of identity verification solutions. The partnership with Mobai enables the identity verification provider to boost its AuthentiScan product suite with the latest biometric technologies for facial verification. By adding Mobai’s technology, Keesing accommodates the surge in requests from its customers and the market for a secure solution that supports seamless identity verification for both remote and on-premises customer screening and onboarding.

“Businesses around the world are faced with the need to verify identities – whether digital or document-based – to protect their business and ensure the right person has access to their service.  As the user experience in the verification, validation and onboarding process is crucial to the success of a business, we see it as our responsibility to provide them with best-in-class identity verification to prevent fraud in a way that’s user-friendly, secure, and effective for them and their customers, and that’s one of the benefits of teaming up with Mobai,”

Jan Lindeman, Managing Director of Keesing Technologies.

AuthentiScan is Keesing’s flagship solution for automated identity verification. It offers reliable and real-time results, guiding the customer through a seamless identity proofing process– using Mobai’s facial verification technology – and Keesing’s extensive ID document verification technology. Based on a comparison of a selfie with the photo on the ID document the face verification technology ensures biological identifiers are from the proper user and not from someone else. As this check is seamlessly integrated in the process and ease-to-use, it instantly boosts efficiency and does not interfere with the user experience. Keesing’s identity verification offers the highest level of document authentication and verification by submitting the document to several thorough cross-checks and verifying it against Keesing’s ID reference database including ID documents from over 200 countries. This accurate and comprehensive document verification process allows for extremely reliable results that contribute to security and fraud prevention for the business and its customers. Together, the Norwegian and Dutch companies bring a unique combination of best-in-class technologies that allows businesses to establish someone’s true identity from anywhere in the world and brings trust in business relationships again.

“We are thrilled with the integration of our face verification technology in the Keesing AuthentiScan product suite and are excited to see how our partnership results in a holistic solution for businesses looking for a highly secure means of ID verification. It’s fantastic to see that regardless of the situation, whether it’s face-to-face or remote, we can contribute to the security of a business and at the same time give their users a convenient user experience when onboarding. During the integration project over the past months, we have learned to appreciate the expertise, transparency, and professionalism of Keesing Technologies, which is really reflected in the low friction and modern user experience of the solution we are now bringing to market”, says Brage Strand, founder and CEO of Mobai AS.

  “We are confident that Keesing’s longstanding expertise and trusted business combined with Mobai’s innovative and advanced face verification services are a perfect fit for existing and new clients”.

Brage Strand, Founder and CEO of Mobai AS

Jan Lindeman adds to this: “We know how crucial a secure and smooth onboarding process is for users, and that a trusted means of identity verification is key in this respect. The solution enabled by this partnership reflects the core values Keesing stands for: security, trust, accuracy, and ease of use. Mobai is known for providing its customers with safe and accessible biometric services and we are very pleased with the addition of Mobai biometrics to our solutions, increasing the level of trust in identity for our customers and the customers of our customers.”

Mobai’s mission is to make digital services safe and available to everyone. “By introducing face verification as a means of identity proofing, we may also offer support to groups that struggle with more traditional password-based solutions such as elderly. In addition, face verification reduces the need to physically touch and handle keyboards tokens and other devices. By doing so, we can contribute to enabling a wider range of non-traditional and new users to join our digital society,” says Brage Strand.

The new service, Keesing AuthentiScan with face verification, is available from today. Initially, AuthentiScan will use Mobai Face Verification that includes liveness detection checks from Mobai’s Presentation Attack Detection Service (PAD). Future AuthentiScan releases may include Mobai Morphing Attack Service (MAD) providing customers with a unique and enhanced protection of personal data and privacy by using biometric template protection technologies.

Sevenoaks District Council modernises document processing

Sevenoaks District Council modernises document processing

In a bid to modernise its document processing, Sevenoaks District Council has today announced a move to implement digital signature technology from Yoti across its Housing department.

The Council, located in Kent, is keen to cut admin-intensive processes using a secure approach. Currently an organiser of public services for 120,000 citizens and employing approximately 425 staff across 16 departments, the decision to incorporate Yoti’s eSign and eWitnessing platform will ensure smoother operations council-wide.

The move will support the council in reducing time and costs relating to sending, signing and managing documents, as well as reducing daily paper use, providing a more environmentally friendly approach to their work.

Previously, officers relied on printing and sending documents via post – both proving time absorbing and difficult to manage during remote working. Yoti’s eSignature platform allows documents to be managed from a central location and for a digital copy to be sent to the customer via email.

On average, businesses using Yoti benefit from improved document signing speeds with 85 per cent of documents being signed within the first 24 hours.

Given customers will now be able to access sensitive documents via email, enabling them to sign quickly and securely, the entire customer experience promises to be a more seamless one.

Based in London, Yoti provides identity verification, eSignature and age verification technology. It  boasts a rapidly growing eSignature division delivering services for several prominent organisations including Connells group, RIBA, GiGroup and Countrywide. The company has recently launched its ground-breaking electronic witnessing solution.

Cllr Kevin Maskell, Sevenoaks District Council’s Cabinet Member for Housing, said: “We’re always looking for more efficient and innovative ways of working, and Yoti’s eSign technology ticks both of these boxes. At a time when there is greater demand for our housing services than ever, eSign is speeding up the processing of applications while providing a more convenient service for our clients. It also cuts down on paper, helping with our ambitions to become a Net Zero carbon council by 2030”.

Matthew Gilbery Commercial Director at Yoti commented: “Our collaboration with Sevenoaks District Council follows the successful transformation of Ashford Borough Council in 2020, another local authority in Kent that adopted Yoti’s eSignatures platform and saw a reduction in costs and increase in efficiency. It’s exciting to see just how transformative digital identity services can be – and the citizens of Sevenoaks District Council should expect to see greater efficiencies moving forwards.”

NIDP Ethiopia implements TECH5 solution

NIDP Ethiopia implements TECH5 solution

TECH5, an innovator in the field of biometrics and digital identity management, has become an international partner and technology supplier for the National ID Program of the Ethiopian Government Entity (NIDP Ethiopia). NIDP Ethiopia has implemented a limited pilot program with TECH5 biometric and digital ID technologies for enrollment and authentication of residents as well as digital ID issuance.

This pilot program has at its core an IDMS (Identity Management System named Fayida) based on MOSIP. The National ID Program of Ethiopia has been working on customizing the MOSIP open- source platform for more than a year and has now reached the position of launching a pilot. Individuals participating in the pilot program can be enrolled by providing their biometric and demographic data. Face, fingerprint, and iris images are captured, checked for quality using the TECH5 SDK, and then de-duplicated through a 1:N check against data in the National ID system using the TECH5 identification system (T5-ABIS BE) that is integrated into the MOSIP platform.

TECH5 has also deployed the T5-IDencode platform integrated with MOSIP for Digital ID generation. Once enrolled, an individual receives a digital ID which can be presented in an electronic or printed format and verified completely offline using an authorized verifier application on a smartphone. All data collected, stored in the NID database, and/or published in the ID credential is limited to the minimum data required to identify an individual. All data remains secure under NIDP and is owned by the individual who has sole and total control over how the data is managed and used.

The Ethiopian Identity program is working in compliance with international principles of data privacy, minimal data retention, inclusion and consent. Current working principles are made public here http://www.id.gov.et/principles.

“This entire program is aimed at creating and implementing a Foundational Digital ID system for Ethiopia at the national level, the culmination of which results in the enrollment of millions of consenting individuals as part of national priority use-cases in the banking, insurance, education, residential services and other sectors. “We are glad to partner with the TECH5 team, who have demonstrated innovative solutions in the biometrics industry.” – comments Yodahe Zemichael, Executive Director of the NID Program. “We are fully supporting the Ethiopian National ID Program with our expertise and latest technologies because we share the same principles of inclusion that provide individuals with a universal digital identity that is easily accessible and controlled solely by them.” – says Machiel van der Harst, Co-founder and CEO of TECH5.

NamaChain launches identity system

NamaChain launches identity system

NamaChain, a WEB 3.0, privacy-driven, socially responsible, blockchain-powered, and environmentally conscious technology company, announces the launch of a device-agnostic platform that provides for a self-sovereign identity (SSI) technology.

NamaChain, a non-custodial solution, provides a trusted digital identity on the blockchain, guaranteeing all stakeholders privacy, security, and convenience. Its platform is globally compliant and interoperable with every platform and has multiple use cases across any vertical that requires a trusted identity. NamaChain not only provides a universal portable digital identity but a protected utility to participate, communicate, and transact on the patented platform without exposing any PII data. The self-sustaining platform does not rely on centralized providers and solves the most prevailing challenges of digital privacy, security, user control, and verification.

NamaChain aggregates physical and digital identities into one identity that provides the user total control from any device. The solution provides an authenticated and verified digital identity for users and KYC/AML verification for stakeholders. With built-in security safeguards providing total privacy and security, NamaChain gives users complete control and the sovereign right to choose who can access their data.

NamaChain revolutionizes the manner in which people and organizations create, interact, authenticate, and manage their digital identities. It provides secure access to any applications that require a trusted Single Sign-on. Organizations can utilize Nama’s Identity gateway to provide their customers, employees, and supplier access, while enhancing security, improving customer experience, and reducing operating costs associated with regulatory compliance.

With a global team of passionate, socially-aware technology specialists and recognized and respected industry advisers, NamaChain is now ready to start its revolutionary journey to disrupt the global digital identity space.

BAXE partners with IDEMIA and Haventec

BAXE partners with IDEMIA and Haventec

BAXE, an Australian FinTech, has partnered with IDEMIA, the global leader in Augmented Identity, and Haventec, an Australian software company that decentralises sensitive data and credentials, to launch the first decentralised blockchain ecosystem using a facial authentication solution for identity verification in Australia. With this solution, BAXE users around the world will be able to authenticate high-value transactions, reclaim lost passwords or regain access to locked accounts using their face as a secure identification method. This solution will enable face verification in just a matter of seconds, resulting in faster, seamless service.

Haventec’s platform will be integrated into IDEMIA’s Identity Management platform, which helps BAXE securely store and manage the created digital identities. Utilising IDEMIA’s Identity Management solution provides BAXE with the ability to create, store and manage digital identities in a secure space with high assurance. This simplifies the digital identity authentication processes and helps comply with various Know-Your-Customer (KYC) and data privacy regulations.

Supported by IDEMIA, the biometric authentication solution is designed to streamline the re-identification process for BAXE users, eliminating traditionally lengthy verification processes, such as having to contact support teams and manually re-verify identity to approve transactions and restore account access.

With Australians increasingly embracing digital financial services, the time is right for the user experience to evolve as well. Traditionally, financial services are highly dependent on authentication for security and manual verification can be very time-consuming. Our solution will address these issues as it leverages biometric technology to ensure security while greatly enhancing convenience. It was important for us to work with proven technology partners to bring this vision to life, and IDEMIA was the natural choice for their distinguished track record in digital identity management.
Dylan Blankenship CTO of BAXE

BAXE is currently developing an extensive ecosystem of applications across a decentralised finance (DeFi) blockchain network. With the highest degree of personal security and privacy at the forefront of design, the BAXE applications consist of communications, storage, payments, ecommerce applications. Through this ecosystem, BAXE offers users products and services to invest, buy, sell and trade within the emerging web 3.0 digital economy. BAXE will use Haventec’s Authenticate platform to perform two-factor authentication within the ecosystem, which includes a facial authentication check via a self-taken photo.

As the world becomes more digitized, so too will our identities. It is more important than ever for companies to take the necessary steps to secure the protection of the digital identities of their users in order to maintain trust in the relationship. Through our world-class Identity Management platform, IDEMIA is pleased to support BAXE and Haventec in delivering a revolutionary new authentication solution for users in Australia, which enables them to reap the twin benefits of convenience and security via innovation.
Alexi Paxinos, Head of the Digital Business Unit, Australia and New Zealand, at IDEMIA

There is no more sensitive data than that which defines your identity in the digital realm, and data protection must be a core focus of any modern digital innovation to boost user confidence. With the rolling key encryption and multi-factor protection of our Authenticate platform, we decentralise digital identities to ensure maximum security. It is our pleasure to collaborate with fellow technology partners IDEMIA and BAXE to bring truly cutting-edge innovations to life and ensure that they are protected against modern digital threats for better resilience.
David Maunsell, CEO of Haventec

FDIC and FinCEN launch Digital Identity Tech Sprint

FDIC and FinCEN launch Digital Identity Tech Sprint

The Federal Deposit Insurance Corporation (FDIC) and the Financial Crimes Enforcement Network (FinCEN) today announced a Tech Sprint to develop solutions for financial institutions and regulators to help measure the effectiveness of digital identity proofing—the process used to collect, validate, and verify information about a person. Through the Tech Sprint, FDIC’s tech lab (FDITECH) and FinCEN seek to increase efficiency and account security; reduce fraud and other forms of identity-related crime, money laundering, and  terrorist financing; and foster customer confidence in the digital banking environment.

Digital identity proofing is a foundational element to enable digital financial services to function properly. This element is challenged by the proliferation of compromised personally identifiable information (PII), the increasing use of synthetic identities, and the presence of multiple, varied approaches for identity proofing. The FDIC and FinCEN ask Tech Sprint participants to answer the following question:

“What is a scalable, cost-efficient, risk-based solution to measure the effectiveness of digital identity proofing to ensure that individuals who remotely (i.e., not in person) present themselves for financial activities are who they claim to be?”

In the coming weeks, FDIC and FinCEN will open registration for this Tech Sprint. Interested individuals will have approximately two weeks to submit applications. The Tech Sprint will encompass a review of applications, grouping of individuals into teams that will work together over approximately three weeks to develop solutions to this challenge question, and invitations to participate in a virtual “Demo Day” of short team presentations to a panel of experts for evaluation.

At the conclusion of the Tech Sprint, the FDIC will publish all team presentations and recognize teams based on several criteria detailed in the forthcoming prize notice. Neither the FDIC nor FinCEN are offering monetary prizes associated with the Tech Sprint. Additional questions about the Tech Sprint can be sent to Innovation@FDIC.gov.  Read more about FDIC and FinCEN’s Tech Sprint, Measuring the Effectiveness of Digital Identity Proofing for Digital Financial Services.

HID forecasts 7 trends impacting security and identity in 2022

HID forecasts 7 trends impacting security and identity in 2022

HID Global, the worldwide leader in trusted identity and physical security solutions, outlines and discusses important trends that are set to reshape the security industry in 2022 and beyond.

WHO: With more than 30 years powering and protecting the physical and digital identities of the world’s people, places and things, HID Global is in a unique position to identify key enablers, disruptive events and game-changing developments that will shape the security landscape in 2022.

WHAT: By observing the market and listening to partner and customer feedback, HID Global believes the following seven topics will impact the security industry this year and beyond:

Supply Chain Issues: Supply chain issues will continue to be a dominating security trend, making 2022 a year when the industry must get creative. Semiconductor shortages, global logistics bottlenecks, and corresponding cost increases will impact everything from readers and control panels to sensors and detectors.

Sustainability: The past year has demonstrated a growing consensus that end users demand to work with suppliers that make sustainability a cornerstone of their business decisions and operations. In 2022, the focus on sustainability will grow, driving suppliers to increase focus on digital solutions, including end-to-end mobile and multi-application technologies that reduce the industry’s footprint.

SaaS-Delivered Identities: Digital transformation has brought with it a move to cloud deployments and service models, providing opportunities to manage access control for applications, physical assets, and data while new form factors enable seamless, trusted authentication. As digital-first mandates continue to impact the security landscape, 2022 will see SaaS-delivered identities become not just the norm, but the expectation. 

Digital IDs : Digital wallet adoption is at an all-time high. Big technology companies are increasing new credential functionality in applications. Enterprises and governments are adding new infrastructure to support digital transactions. In 2022, there will be a tipping point for digital IDs to outpace physical ones, and digital services will play a vital role as suppliers organize around service models and service-led growth.

Future of Work: Hybrid work models are the norm today and a zero trust approach for all is a top trend dominating the security industry in 2022. Leaders tasked with ensuring a safe environment for those returning to the office – and secure identity and access management for those working remotely – are looking to the latest physical access trends and the best practices enabling them. Touchless solutions, data protection, and visitor management technologies are ensuring healthy and secure on-site environments while multi-factor authentication solutions take center stage for remote applications.

Contactless Biometrics: Biometrics are already in widespread use, whether it’s to secure a mobile device, secure a driver’s license or other government ID, or to track fitness. In 2022, biometrics paired with cloud-based identity management solutions is poised to fuel much faster growth. Security’s role in delivering biometric technology that enables secure authentication and protects data privacy is emerging across sectors of the economy.

Data Science: The combination of IoT, cloud and mobile technologies is steadily driving digital transformation across the security industry. Balancing protection against the potential of new physical and digital cybersecurity threats has moved data science into the spotlight, as discussion turns from risk mitigation and prevention to threat prediction and aversion. In 2022, artificial intelligence (AI) and machine learning (ML) become more tightly woven into the fabric of trusted identity solutions across the physical and digital continuum, automating and optimizing performance, accuracy, safety, and security.

WHY: By understanding how each of these developments are forecasted to shape the industry, security professionals will be better prepared to capitalize on breakthrough innovations in solutions and services, ultimately delivering a higher level of security across the physical and digital realms.

Guest post: Vaccine Passport App Vulnerabilities: an Overview

Guest post: Vaccine Passport App Vulnerabilities: an Overview

Due to high demand, digital vaccine passports are rushed out worldwide. However, they often have serious data security and validity issues. Let’s see what some of these vulnerabilities are and how ID readers can help in spotting criminals exploiting vaccine passport apps with fake COVID certificates.

As countries are reopening their borders, there is a justifiable demand for digital versions of our vaccine passports. And states are answering that demand as fast as they can. But due to rushing out these apps, many of them come with severe vulnerability issues.

In this article, we collected the most notorious cases. We also propose a viable option for spotting convincing but forged analog and digital vaccine passports.

Why Is Vaccine Passport Vulnerability a Risk?

We all know that there is no such thing as a perfect mobile application. In many cases, a bug is nothing more than a nuisance. However, vulnerability becomes a priority for apps that store sensitive data, such as the vaccine passport.

New York Times correspondent Ceylan Yeğinsu writes that the main problem is that a passport is a government-issued document for certifying personal data. So “many people fear […] handing over personal and sensitive health information that data controllers can easily abuse.” And unlike medical facilities where laws strictly regulate how such information must be handled, businesses outside the health industry can do whatever they want with our health data.

Panda Security, a manufacturer of antivirus solutions conducted non-representative research regarding vaccine passports, It turned out that 56% of the people worry about the security of their data. Unfortunately, they have every reason to fear falling victim to data theft. In the early stages of the COVID-19 pandemic, four U.S. states suffered from cyberattacks targeting unemployment benefits applicants.

The results of Panda Security's study, showing that 56% of people have concerns for their data's safety
Courtesy of Panda Security

As such, digital COVID certificates should be bulletproof from the get-go. However, these apps had to be developed rapidly to lift travel and social restrictions as soon as possible This resulted in flaws of varying degrees of concern.

Examples of Known Digital Vaccine Passport Vulnerabilities

NYC Safe: One Photo to Fool Them All

It’s hard to tell from a printed vaccine passport whether it’s fake or not, let alone from a photo of the document. This was the case with New York’s NYC Safe application. Heavily criticized for being nothing more than photo storage for paper-based COVID passports, the application allowed individuals to upload any document, legitimate or forged. The weakness of the system became all too evident when it accepted a portrait of Mickey Mouse as proof of vaccination.

NYC Excelsior Pass Wallet: Fake Credentials

The infamous case of this U.S. digital vaccine passport for the citizens of New York State highlighted another type of risk. As discovered by the NCC Group, the NYC Excelsior Pass Wallet application allowed individuals to create and store fake vaccine credentials by simply scanning a phony document. Users could easily exploit the fact that the COVID certificate wasn’t appropriately verified.

Australia’s Express Plus Medicare: Replicating the Animated Validator

Ten minutes. This is all it took for Richard Nelson, a software engineer in Sydney, to expose the vulnerability of Australia’s Express Plus Medicare COVID-19 application. He also proved why QR codes are a must for vaccine passports. The main issue with the Australian COVID certificate is that aside from basic data, it features a supposedly unique animation to demonstrate the passport’s validity. Nelson could easily replicate this animation, allowing him to create as many fake digital vaccine passports as he liked.

A Set of Vaccine Passports Showing Their Respective Status Screen

Québec’s VaxiCode Verif: Forged Digital Signatures

Like many COVID certificate apps used worldwide, the digital vaccine passport issued by Québec, Canada, uses QR codes containing the necessary vaccination data combined with digital signatures. The digital signature features asymmetric cryptography, using two keys. Theoretically, this guarantees that the validator app doesn’t identify fake credentials as legit.

A cybersecurity expert still managed to fool VaxiCode Verif relatively easily. He generated a key pair and made the public key available at a given website. Then he created two QR codes. One was posing as a valid digital vaccine passport containing the public key and a plain fake COVID certificate. Then he presented the QR code with the public key to the app. It correctly rejected it as a valid COVID certificate but, simultaneously, forcefully downloaded the public key. After that, the app verified the other fake digital vaccine passport as being valid.

We should add that the app’s developers reacted quickly. Soon after the incident, they released a new version that eliminated the problem.

EU Digital COVID Certificate: Vaccinating the Dead

When it comes to the European vaccine passport, called the EU digital COVID certificate, experts usually praise it for implementing the strict privacy rules of the GDPR, especially from overseas. In fact, allowing member states of the EU to develop their own versions of the COVID certificate was a risk, which eventually paid off. That doesn’t mean there were no flaws, however.

Tim Berghoff of GData, a German computer security company, pointed out many issues with the EU certificate’s German version. We’ll highlight two:

  1. In the case of paper-based COVID certificates issued by a pharmacy or a doctor’s office, the accuracy of the data transferred into the app wasn’t verified if the original. Cybersecurity experts managed to validate an EU vaccine passport even though it showed the same date for the test subject’s first and second vaccination.
  2. Berghoff and his team could create a vaccine passport for Robert Koch, a German microbiologist from the 19th century. The EU COVID certificate had no problem validating the vaccination of a long-gone person.
Example of a Vaccine Passport

Are Paper-Based Vaccine Passports the Answer?

Not quite. Granted, it seems like a logical step to forget digital vaccine passports and have our vaccination certificates in our pockets.

Like their digital counterparts, paper-based certificates were also rushed out. This led to analog vaccine passports being easily forgeable. In the U.S., the Centers for Disease Control and Prevention (CDC) issued a certificate with data written in ink. It isn’t surprising that scammers took their chance and flooded the black market with fake vaccine passports.

Consequentially, these fake certificates could quickly end up in COVID apps with minimal or no authenticity validation features. This allows unvaccinated people to enter places that require individuals to be vaccinated.

Verifying Vaccination Status

Application bugs and issues will always be discovered and eliminated sooner or later. This is what happened in the case the apps of Québec and the State of New York. Furthermore, virtual COVID certificates – at least those implementing digital signatures – are still more resistant to forgery than their paper-based counterparts. In any case, those who trust analog vaccine passports more should make sure they store them in a secure location.

Osmond Smart ID Reader and Scanner Banner

If you are part of a business and have to verify the validity of digital vaccine certificates, there are two things you should consider. First, check, and double-check the document in front of you. Although some national and international vaccine passports do not feature advanced security solutions like digital signature, they are in the minority. The number of states requiring vaccine passports is rising. Many of them are likely not to accept vulnerable certificates as valid travel documents.

One way to verify that an individual isn’t presenting a fake COVID certificate is by cross-checking it with another ID document. An advanced automated ID reader like Osmond can verify a travel passport’s authenticity while also obtaining virtually all data from travel passports via optical character recognition technology, including the traveler’s name, country of origin, and many more.

About the Author

Balázs Molnár

Hungary

As an International Sales Manager at Adaptive Recognition, I am responsible for the business development in several countries all over the world. We are market leaders in the OCR based technologies industry, and my task is to help our partners, customers find the most suitable solution for their needs in the ID reading & verification technology.

View profile

Greece to launch mobile ID, mDL

Greece to launch mobile ID, mDL

Greek citizens will be able to download a digital version of the full identity card and their driving license to their mobile phones by next Easter, Digital Governance Minister Kyriakos Pierrakakis revealed on January 6.

Pierrakakis told SKAI TV that, “We aim to have the biggest part of this work at the end of the first quarter of 2022, surely before Easter we will have these changes in terms of the new identity card … and in terms of the driving license.”

Currently, only part of the ID can be put on cell phones now to help people get into stores easier where showing a vaccination certificate or proof of recovery from the Coronavirus is required.

The new service will allow citizens to use their digital ID in any transaction with the state or institution requiring identification.

The launch follows the success of a COVID-19 free GR Wallet App which lets people put certificates of vaccination and other identification on their cell phones, which saw more than one million responses shortly after it was launched.

 Identity Week Europe launches call for speakers

 Identity Week Europe launches call for speakers

With just six months to go until Identity Week Europe 2022, the organiser has launched another call for speakers to strengthen the already inspiring programme of conference speakers and panellists.

The conference programme comprises industry experts and thought-leaders from around the world discussing the future of identity solutions; the cutting-edge technology, the threats and opportunities and sharing insights.

Speakers can j this June at the ExCel, London, 28 – 29 June and be at the forefront of the next generation of identity solutions. 2022 speakers include WarnerMedia, Bundesdruckerei, Frontex, World Privacy Forum, IATA, eu-LISA, Natwest Group – more to be announced.

Click here to apply!
*Applications close Wednesday 26 Jan
Key themes this year:Biometrics in Travel
> Digital Onboarding in Financial Services
> IAM in Media, Sport and Entertainment
> Fighting Document Fraud
> Document Security Innovations
> National Identity Initiatives
and more.

IDEMIA launches a new generation of MorphoWave terminals

IDEMIA launches a new generation of MorphoWave terminals

IDEMIA, a global leader in Augmented Identity, innovates to offer ever more complete and adapted solutions to its consumers. With MorphoWave, users simply wave their hands in a quick and easy gesture to have their four fingerprints 3D-scanned and verified in less than one second.

Launched in 2016, the MorphoWave technology has proven a great success—it is powered through several generations with more than 15,000 gates throughout the world.

In 2022, two new versions will be available for worldwide deployment:

  • MorphoWave™ XP X-tended Performance provides a 20% increase in performance compared with the previous generation, itself recognized as one of the best in the world in the latest NIST rankings. It accomodates demanding deployments with up to 60 users per minute and up to 100,000 user records. Its large color display is ideal for brand customization and user interaction as well as time and attendance management use cases.
  • MorphoWave™ SP Simplified Profile, offers all the essence of MorphoWave to make IDEMIA space security solutions accessible to a larger number of players: smaller installations and companies with less demanding requirements with up to 40 users per minute and up to 10,000 user records.

Both versions leverage the “plug & play” features of Compact, including software integrations with 20 leading access control platforms as well as physical integrations with leading gates/turnstiles manufacturers to enable simpler and more cost-effective deployments.

These two new products incorporate the most advanced biometric algorithms we have ever created, continuing the tradition of our award-winning solutions in the market. We are the only manufacturer of physical access control terminals to undergo such rigorous testing, demonstrating the reliability of our solutions. We will continue to invest in research for greater accuracy and security.
Yves Portalier, Executive VP Biometric Devices at IDEMIA

 

Targus and Synaptics to launch universal dock with bio-Authentication

Targus and Synaptics to launch universal dock with bio-Authentication

Targus, a leader in universal docking solutions and tech accessories, has partnered with a leading provider of connectivity and AI-driven technologies, Synaptics, to launch the world’s first biometric device built into a dock – the USB-C Hybrid/Universal 4K Quad Dock with 100W PD and Fingerprint ID. This exciting innovation (DOCK720) is one of several new connectivity solutions being showcased by Targus (Booth #16734) at CES® 2022, Jan. 5-7, in Las Vegas.

“As the workplace continues to move to remote and hybrid environments, today’s organizations demand greater flexibility, collaboration, and security than ever before to maximize employees’ productivity from any location,” said Andrew Corkill, vice president of global marketing & eCommerce, Targus. “Our DOCK720 is a game changer for enterprises that require secure network connections from any location, while enhancing and simplifying the user’s sign-in experience.”

“We are excited to partner with Targus to develop a docking solution with the most flexible display configurations available in any dock on the market,” said Saleel Awsare, senior vice president and GM, PC and Peripherals at Synaptics. “Leveraging a combination of our DisplayLink universal graphics technology and our latest Cayenne VMM6210 video interface plus Prometheus FS7600 fingerprint sensor, this universal/hybrid dock with fingerprint authentication is uniquely designed to meet the requirements of the evolving workplace—whether users demand a single-display, two-display, or even up to four-display setups—with the added security capabilities of biometrics.”

DOCK720′s key features include:

ADVERTISEMENT
Fingerprint sensor (FPS) integrated in the dock using Match-in-Sensor (MIS) technology
Hybrid design that works with DisplayLink or DP Alt Mode
Single 8K via VMM6210
Two Dual 4K via HDMI or DisplayPort ports via DisplayLink
100W Power Delivery
USB-A = 4 (1 fast charging)
USB-C = 1
RJ45 Gigabit Ethernet Port
Combo Audio Jack
Standard Lock Slot
Universal compatibility with Windows, macOS, Linux, Android, Chrome OS

Another new dock that Targus will be showcasing at CES this week is its DOCK710: USB-C Hybrid/Universal 4K Quad Dock with 100W PD, which offers the same truly universal compatibility and flexible connectivity as the DOCK720, without the built-in biometrics capabilities required by larger enterprises. DOCK710 is the ideal docking solution designed for any organization or at-home user to increase productivity, collaboration, and ease of use in hot desking/hoteling environments.

TECH5 face recognition technology (T5-Face) to be used in Chile

TECH5 face recognition technology (T5-Face) to be used in Chile

TECH5, an innovator in the field of biometrics and digital identity management, and Solem, an international technology company that integrates process and business intelligence to its services to enhance high productivity, efficiency, and continuous transformation of its customers, announced their partnership and launched a biometric-based solution that links a person to their COVID-19 test results biometrically. The solution will help trace the virus, avoid impersonation, formalize consent, and facilitate appropriate quarantining of an infected person.

The solution has been tested on the first customer in Chile and proven its efficacy for biometric traceability. It will now be implemented for the active search of COVID-19 cases. Every worker will go through a weekly digital onboarding process to collect a facial image, test result and number associated with an antigen rapid test, as well as other data. The rapid test number and test result will be linked to a person’s biometrics, and using the biometric matching technology of TECH5, T5-Face, an employer will be able to verify a worker’s identity upon arrival to the worksite.

“The solution is fully inclusive even for those workers who do not have a smartphone, as onboarding can be done in the clinic prior to testing.” – comments Víctor Parra, Solem Product manager. “The same solution can be used in cases when symptoms are suspected to make sure that the person has taken a rapid test, avoiding in this way, the entry of a person with positive virus detection into a worksite.”- says Mr. Parra.

“We are delighted to announce our partnership with Solem. For TECH5 it is a great opportunity to introduce its technologies and solutions to a wider range of customers, as well as prove its effectiveness in various use cases across Latin America.”- comments Jeremy James, TECH5 Vice President Sales for Caribbean & Latin America.

In 2022, the partners are planning to develop other biometric solutions to help stop the spread of a deadly virus.

iDenfy introduces phone verification service

iDenfy introduces phone verification service

iDenfy, a company providing identity verification and fraud detection services, launches an enhanced version of phone verification.

Over the years, institutions and governments worldwide recognized the importance of Know Your Customer (KYC) initiatives to fight fraud effectively. Certain factors can help evaluate the risk associated with each client and take the necessary actions outlined in the Customer Due Diligence (CDD) guidelines.

While verifying the customer’s Personally Identifiable Information (PII) is pretty straightforward according to iDenfy, verifying the phone number is a bit trickier.

“Many people value their privacy above all and will resort to certain methods to bypass the process. Using a made-up number, a “burner phone,” or making use of temporary phone numbers issued by specific websites are among the most popular” Domantas Ciulde, CEO of iDenfy, reflects on the issue.

According to the company, fraudsters know and love these methods. They will never use their actual phone number and will abuse every security gap they can – and there are many more gaps today due to the COVID-19 pandemic. As Israel Aloni, Cyber Security Director at KPMG, put it, “Fraudsters never waste a good crisis.”

Not only is phone number a crucial part of KYC, but many industries also rely on it to communicate with their customers about their newest products, policy changes, etc. If the number is not valid, that’s time and resources wasted, in addition to crucial information not making its way to the client.

iDenfy’s phone verification solution tackles these issues by thoroughly analyzing the data provided by the customer. With a quick API call, iDenfy will deliver crucial information to help assess the risk associated with the phone number and recommend actions. The data will include customer location, roaming country, current network, availability, validity, phone contract details. According to the company, it’s a great way to mitigate the risk of fraud – especially now that digital services and remote operations are the new norms.

Companies can use iDenfy’s phone verification product to double-check their customers by sending them a one-time password or “text to speech” message. It can be used both as an additional fraud prevention tool and as part of the secure onboarding process.

“Phone verification is not new in the market. Many industries use the system to confirm the numbers of their clients and establish a medium for communication. However, our product stands out in its ability to thoroughly analyze the phone number provided and assess the risk associated with it. It’s a flexible tool, as companies can decide for themselves what to do with the information they’ll receive. As face-to-face interactions are much rarer today than in the pre-COVID-19 times, businesses should utilize every tool available to ensure security and transparency,” says Domantas Ciulde.

NamaChain launches identity system

Aware expands eKYC offerings by acquiring Fortress Identity

Aware, a leading global provider of biometrics software products, solutions and services, today announced it has acquired Fortress Identity, a pioneering provider of digital ID verification and biometric authentication. As a result of the acquisition, Aware expands its offerings around identity proofing—enhancing its onboarding, verification and authentication offerings to directly address financial compliance requirements and enable organizations to mitigate risk and curtail increasing fraud.

The FortressID platform from Fortress Identity uses biometric multi-factor authentication to combine onboarding validation and due diligence for compliance and risk management. The result is a highly secure, seamless user experience that eliminates the need for passwords; enables customers to verify identification documents; and directly performs risk and due diligence checks (examples include anti-money laundering (AML), counter-terrorism finance (CTF), and politically exposed persons (PEP)).

“The cloud-native FortressID™ platform is highly complementary to Aware’s current offerings. Its existing customer base will help accelerate our penetration into the most attractive markets in North America and other geographies—furthering our transformation to a SaaS business model and our ability to provide customers with biometrics on demand,” said Bob Eckel, Aware’s chief executive officer. “Furthermore, the acquisition strengthens our position in our core markets in Latin America and Europe and expands our suite of offerings to include each link in the identity value chain.”

Alessandro Chiarini of Fortress Identity said: “Since inception, Fortress Identity’s mission has been to strengthen the integration between digital ID verification and biometric authentication during onboarding so it can be leveraged in subsequent enterprise authentication. It aligns nicely with Aware’s vision of creating a world where individuals own their identity and I’m excited for the collective impact the combined suite of offerings will have.”

Josep Tarradellas Barcelona-El Prat Airport launches facial recognition trial

Josep Tarradellas Barcelona-El Prat Airport launches facial recognition trial

Aena, together with Vueling and the group of technology companies formed by Easier, IDEMIA, Indra, Materna-ips and Mobbeel, has launched a pilot boarding test through facial recognition at the Josep Tarradellas Barcelona-El Prat Airport. It is the first time that it has been carried out in Europe integrating in a single process all the steps to be carried out by a passenger at an airport, including the check-in of the suitcase as a novelty. The objective is that passengers can make the entire route to the plane without having to show identification documentation.

Based on an identification technology through the recognition of the physical and non-transferable characteristics of people, the biometric systems equipment has been located in the check-in area, allowing self-check-in luggage; at the access to the security filter and at the boarding gate, where the biometric data of the passenger, their facial features (image of their face) and documentation (ID or passport) will be validated. This makes it possible to streamline the process and increase security from the moment the traveler registers online at home until he catches his flight. The validation of documentation with biometric data is carried out only once during the pilot, provided that the passenger gives his consent for subsequent flights.

Currently Aena is the sole owner of the biometric database and, therefore, responsible for its management, and the information obtained is treated in accordance with the General Data Protection Regulation (RGPD) established in European Regulation 2016/679 regarding treatment of personal data and the free circulation of said data.

Joint project of Vueling and Aena

This collaboration project between Vueling and Aena began several months ago with airline passengers on the Barcelona-Malaga route. This is the most complete pilot test being carried out at an Aena airport, as it includes biometric technology in 4 travel processes: check-in, baggage check-in, security filter and boarding.  

In order to access the plane “by the face”, the passenger must access the Aena app, enter the “facial recognition” section and complete the form. The registration can also be carried out physically at the Josep Tarradellas Barcelona-El Prat Airport in two kiosks located in front of gate B35 and in the Vueling self-check-in area. 

Thus, passengers will be able to exclusively access both the security control filters and the boarding gate on the Barcelona-Malaga route and enjoy more agile access. In addition, they will have the option of leaving their suitcase at the agentless self-check-in belt (self bag drop), simply with facial recognition. 

Passengers can take part in this pilot program on a voluntary basis and travel in a more agile, efficient and contactless way. 

The Director of Innovation, Sustainability and Customer Experience and CGO of Aena , Amparo Brea, has pointed out that “this project, framed in Aena’s Strategic Innovation Plan, is the last step in a set of actions led by the company since the beginning of 2019 and aimed at testing the use of biometric systems at different points of the airport. We are convinced that this technology will significantly improve the passenger experience at our airports and these projects allow us to advance in its deployment. We provide passengers with tools that allow them to carry out part of the documentation checks that are currently being carried out in airport procedures, so that their passage through the airport is safer, more fluid and more comfortable ”.

According to Calum Laming, Vueling Chief Customer Officer , “being able to offer such a complete biometric experience confirms our desire to improve the experience of our customers at the airport, and also favors a much more agile and modern flow of customers. This is a project with a high technological component, a key element in Vueling Transform and in our digitization strategy to improve service and so that customers can manage their travel experience with greater autonomy and flexibility ”. In this way, Vueling has become the first airline in Europe to offer a complete contactless travel experience thanks to the use of biometric technology.

On the other hand, the companies in charge of developing, supplying and installing the necessary equipment to carry out the test have used automated systems that include advanced biometric and document validation technologies, which optimize performance in passenger access time. 

Indra  has been commissioned in this pilot of the platform that allows integrating the equipment and different systems that make up the solution. Thanks to it, it is possible to guarantee the collection of identification and biometric data at the enrollment kiosk and CUSS, filter and boarding gates for their treatment and integration with Aena systems, ensuring the perfect functioning of the complete solution. 

The biometric system of self-check-in luggage (Self Bag Drop) of  Materna IPS  takes an image of the passenger and contrasts it in real time against the database of those enrolled in the biometric program. In this way, it is able to identify if that passenger is part of the program, allowing at that moment that it can proceed to check in its luggage by itself. Maternal IPS biometrics . 

Easier  has integrated biometric devices and their middleware for enrollment and verification at each control point by supplying dual equipment (common self-service kiosk and biometric registration in the same device), as well as electronic gates with detection of uniqueness of more accurate passengers from entering the security zone to boarding. 

For its part,  IDEMIA will  provide high-quality facial image capture at the registration kiosks, the electronic access gate to the air area and the electronic boarding gate. The identification of passengers will be carried out using IDEMIA’s biometric engine, recognized in the market as one of the best for its high precision.  

Mobbeel  provides the mobile application that allows travelers to enroll their biometrics and verify their identity through the scanning of a DNI or passport with NFC and a  selfie  with proof of life to verify that that person is who they say they are. Pioneers in mobile biometrics, the company has been offering digital identity verification solutions for more than 12 years.

SimplyPayMe integrates Smart Engines’ AI-based OC

SimplyPayMe integrates Smart Engines’ AI-based OC

The global payments company, SimplyPayMe, has integrated a software product through Smart Code Engine for credit card scanning in their mobile app. The integration enables SimplyPayMe merchants to receive frictionless, contact-free card payments through a software-based Point-Of-Sale (POS) system without having to manually type in numbers.

The SimplyPayMe platform has been specifically designed and engineered for SMEs, and enables seamless payments, invoicing and simple business management solutions, all through your smartphone as well as some of the lowest transaction fees and fastest settlement times in the market.

To perform payments, a customer simply needs to put the credit card in front of the device’s camera, the numbers will automatically scan, and all the necessary data will be entered in the payment form. Smart Engines OCR technology increases SimpyPayMe’s mobile app accessibility as the users are not obliged to look for a convenient angle or any special lighting conditions for better recognition. Smart Code Engine provides successful debit and credit card scanning even if cards are damaged or worn.

Smart Engines scientists develop Green AI-based OCR algorithms to capture data from credit cards issued according to the standards of VISA, MasterCard, Maestro, American Express, JCB, UnionPay, Diners Club, Discover, RuPay, Elo, Verve, VPay, Girocard, PagoBancomat, MyDebit, Troy, BC Card, Interac, Carte Bancaire, Dankort, MIR. GreenOCR® provides an automatic credit card scanning for cards of any type: embossed, indent, and flat printed, with horizontal or portrait layout, with digits printed on the front or backside.

Credit card scanning is also supported in the real-time video stream and on photos. The software performs all calculations on the user’s device, ensures the client’s data privacy, and does not distribute it to third-party services.

“We are excited to be working in partnership with Smart Engines. Their product allows us to enable and expand the services available to our SMEs and effectively offer a world-leading card scanning solution through our app. Our all-in-one business management solution with payments capabilities allows SMEs to save vital time and offers a quick and easy solution to combat existing challenges. We are proud to be using the fastest OCR solution in the market and look forward to seeing how this can help us to facilitate simplifying payments and business management for SMEs as we advance,” said SimplyPayMe CEO Kent Vorland.

“We are proud that our credit card scanning solution is becoming popular and helping more and more users to make payment transactions easily and securely. For us, cooperation with SimplyPayMe is an important confirmation that various financial organizations need high-quality and secure recognition technologies”, states Vladimir Arlazarov, CEO at Smart Engines, Ph.D.

Totm Technologies invests US$3.75 million in CDI

Totm Technologies invests US$3.75 million in CDI

Totm Technologies has entered into a convertible loan agreement with PT. Cakrawala Data Integrasi (“CDI”) to provide fast and cost effective verification-as-a-service to the private sector in Indonesia.

Mr Pierre Prunier, CEO and Executive Director of Totm Technologies, said, “We are excited about Platform Bersama as this is a significant development for the

identity management industry in Indonesia as it will drive broader and faster adoption of identity management solutions by Indonesian enterprises and individuals alike. With the advent of digitalization and COVID-19 driving the need for identity verification, the Indonesian market has seen considerable interest in identity management solutions from both corporations and end users. More and more small and medium businesses are exploring the benefits of adopting identity management solutions into their client-facing processes and are looking for cost-effective, easy-to-implement solutions.”

 

 

VEON rolls out industry standard for digital ID validation

VEON rolls out industry standard for digital ID validation

VEON, a leading global provider of connectivity and internet
services, today announces the global launch of its MobileID initiative, an
authentication, credentials management and permission control system that will
safeguard consumers and protect retail companies.  VEON intends to roll out
MobileID to its 212 million customers across nine countries as well as
offering it as the standard for mobile operators worldwide to provide digital
identity validation that is fully compliant with local data privacy laws.

“Digital identity is one of the great challenges of our time,” states Kaan
Terzioglu, CEO of the VEON Group. “To date, the world has struggled with
the competing forces of wanting to make the consumer experience more seamless,
while decreasing the risk of online fraud.  MobileID will enable mobile
operators to be the trusted authority for both consumers and retailers with
the reassurance that the operator is based in their home country and
licensed by local data protection laws.”

Incorporating the GSMA’s Mobile Connect standard, MobileID enables safe and
secure determination of customer identity for both online and physical
locations. For consumers, the service delivers a streamlined customer
experience without the need to remember passwords, a universal login at
physical and online locations, and SIM-card based implementation that enables
MobileID to work on any device, including feature phones.

Consumers will also benefit from the autofill of information on online
channels and at physical locations, for items such as credit applications,
while the Permission Centre module will enable customers to manage and control
permissions previously granted to service providers.  For online retailers,
the sharing of customer attributes and knowledge of their physical location
reduces operational fraud and enables the inclusion of credit rating
information.  The MobileID service enabled conversion rates are up to two
times higher for retailers along with an 80% faster service registration
process, while delivering an easier and faster customer journey.

The roll out of MobileID follows extensive trials in Russia with VEON’s
Beeline mobile operator in partnership with other Russian mobile operators.
The nine-month trial deployment saw over 1.2 million monthly active users
subscribe to MobileID to authenticate their digital persona with 36 major
online service providers and merchants, including AliExpress, Alfa-Bank, Alfa
Insurance, Sheremetievo Airport, and Raiffeisen Bank.

Following the successful conclusion of other trials in Russia, MobileID will
be deployed across all VEON mobile operators with its roll-out beginning in
Uzbekistan and Kazakhstan.

“It is the right time for the mobile telecommunications industry to implement
a new industry standard for digital identity validation. For both consumers
and retailers, MobileID could replace the authentication services currently
offered by social networks that are often susceptible to fraud and lack the
checks on the true identity of the digital persona,” explains Kaan Terzioglu,
CEO of the VEON Group.  “Our newly introduced Permission Centre solution also
puts consumers in control of their personal data and enables them to manage
and control permissions that were previously granted to mobile service
providers.”

The operation of MobileID is securely managed with all customer data stored at
Class 3/Class 4 Data Centres that are operated by national telecommunications
operators in compliance with local data privacy laws.  The seamless
integration with customer SIM cards delivers an additional level of security
and customer protection and personal customer data is always encrypted
with the RSA Asymmetric algorithm. Additional levels of security, such as
PIN-based validation, is supported for highly sensitive transactions. In
accordance with local regulations, customer personal data will stay within a
country’s geographical borders.

For major retailers and financial institutions, a full portfolio of software
tools and APIs are available to customise MobileID and integrate it into
specific applications.  National and global interoperability is also assured
as MobileID incorporates the GSMA-endorsed Global Standard (Mobile Connect).
The service is fully end-to-end monitored through network operating
centres with service level agreements and disaster recovery policies in
place.

NordPass password manager introduces biometrics for macOS and Windows users

NordPass password manager introduces biometrics for macOS and Windows users

NordPass is introducing biometric authentication to Windows and macOS applications. This new feature, which previously was available on mobile devices only, will add flexibility and convenience to the login process. Instead of typing in their master password, users will be able to use their fingerprint or face ID to sign in.

This feature was demanded by many NordPass users. It’s not surprising why, as the 2021 Global Identity & Fraud Report reveals that 74% of users prefer biometrics as their primary security and authentication method.

Some cybersecurity experts see biometrics as a more secure authentication method than passwords. According to a report published by NordPass, the most common password is 123456. and relying more on biometrics would help eliminate such weak passwords. But many cybersecurity professionals note that biometric authentication on its own is not enough. The best way to ensure maximum security for your accounts is to use it along with multi-factor authentication (MFA).

Last month NordPass also introduced another long-awaited feature — Emergency Access. This feature allows authorized users to access another user’s password vault in case of an emergency.

Whether it’s family or friends, they can request access to a user’s NordPass vault without the master password, should an emergency arise. Passwords and notes are then received securely by the requester.

Using Emergency Access is a secure feature, as the sharing happens under the same principle that NordPass is built on. It’s called the zero-knowledge architecture and ensures that passwords can be viewed only by those intended.