IAL3 Compliant Solution Aligned With NIST 800-63A Standards

[Tyormkal]

NIST 800-63-3 Digital Identity Guideline requires CSPs to implement a remote identity proofing process which balances security and usability, in order to protect relying parties against impersonation and fraud while upholding user trust at every level.

Evidence strength is determined by the methods used to validate an item of ID&V evidence. The table below contains an interactive map mapping SP 800-63A terms to ID&V terms and levels.

IAL3 verification

NIST publishes industry-leading standards spanning plumbing pressure loss measurements to chemical element viscosities. NIST also serves as technical leadership to promote economic and public welfare through scientific research and engineering.

The NIST 800-63A IAL3 verification standard aims to ensure digital identities match real people in the real world. It requires high degrees of assurance and relies upon risk-driven criteria such as threats, service impacts and user populations when selecting appropriate assurance levels IAL, AAL or FAL assurance levels for every transaction.

Our comprehensive NIST IAL3 verification solution, TrustSwiftly, helps organizations meet IAL3 requirements and achieve FedRAMP high compliance through remote NIST IAL3 methods such as chat, video, facial recognition with liveness detection and document authentication. HYPR Affirm provides organizations with an efficient, user-friendly experience while offering superior cybersecurity while simultaneously lowering cyber liability insurance costs, operational expenses and attack surface areas. In addition to step-up reproofing based on risk - further decreasing cyber liability costs while increasing productivity without needing password resets!

IAL3 identity proofing

NIST provides Identity Assurance Levels as a framework to aid relying parties in making informed risk decisions about what level of rigor and security is appropriate for their transactions.

At the IAL3 level, identity verification requires the highest degree of scrutiny, from on-site or remote identity proofing performed by an approved credential service provider (CSP), including direct observation during IAL3 identity proofing sessions as well as biometric comparison to reduce impersonation and fraud.

Mitek's solutions meet these stringent standards by employing document validation against authoritative sources and facial recognition to validate liveness. This ensures that digital identities provided correspond with real people presenting them, helping prevent impersonation and fraud while decreasing password resets and SIM swap attacks by linking biometrics securely with digital identities.

For assistance in defining the appropriate Identity Assurance Level 3 requirements for you, we suggest consulting the NIST 800-63A IAL3 Identity Assurance Levels Table. This table lists acceptable evidence at each Identity Assurance Level (IAL), along with required levels of verification at each IAL, along with their classification: UNACCEPTABLE, WEAK, FAIR, STRONG and SUPERIOR as well as "STRONG +", defined as one or more pieces of STRONG evidence in combination with another piece from this group of types of evidence.

IAL3 compliant solution

The NIST 800-63-3 Digital Identity Guidelines' IAL3 identity verification process offers high assurance and strong protection from social engineering attacks, through a series of checks such as verification of government documents and biometrics to prevent SIM swapping, MFA bypasses and impersonation/fraud. IAL3 can help combat SIM swaps/MFA bypasses as well as decreasing impersonation/fraud.

The NIST IAL3 standards establish identity Assurance Levels (IALs), which indicate the degree of certainty between claimed identities and real identities, ranging from one (IAL1) to three (IAL3) that requires in-person verification. Furthermore, these levels establish requirements for federated authentication including an expectation that CSPs perform risk-based decisions and verify all claims with at least two pieces of evidence.

TrustSwiftly, HYPR's FIDO Certified passwordless authentication and comprehensive identity IAL3 compliant solution, assists organizations in meeting NIST IAL3 standards and FedRAMP high compliance. With chat, video, facial recognition with liveness detection, document authentication and step-up reproofing depending on risk level based authentication journeys; step up reproofing can then take place step-by-step based on risk levels to reduce cyber liability insurance costs and remove vulnerable OTPs and SMS verification methods which are easily vulnerable to social engineering attacks allowing businesses to reduce liability while increasing security while increasing user adoption levels simultaneously.