WEBINAR: Managing Third-Party Onboarding and Access Governance

The Business Challenge

Citizen IDs lie at the heart of societies, allowing individuals to prove their identity in person to access services, receive entitlements, and more. Proving citizen identity online is more difficult.

Government agencies understand the use of usernames and passwords are not a sufficient form of identity verification as escalating data breaches and ransomware attacks can be crippling and fraud rampant throughout many programs spanning Federal, State and Local.

An example of government action in the United States, federal agencies are now subject to the Executive Order on Improving the Nation’s Cybersecurity. Among the many directives for modernizing cybersecurity, the order called out the need to implement multi-factor authentication and advance to a Zero Trust architecture.

Providing digital identity credentials to citizens will transform how governments of all levels facilitate and secure citizen access to services. The 1Kosmos BlockID platform identity proofing and verification solutions eliminate passwords and therefore create an easy path to access services. Users log in using biometrics, including a liveness test that defeats virtually any attempt at facial spoofing. 1Kosmos delivers a quick and convenient way for citizens to self-verify their identity using physical documents such as a government-issued driver’s license or passport. 1Kosmos BlockID can also leverage the non-physical, such as a telco ID account and banking credentials, to further improve identity assurance.

The 1Kosmos Advantage

The 1Kosmos BlockID platform fundamentally changes the way citizens and government agency employees authenticate.

Government agencies can offer multiple ways to verify identities to ensure they are securely engaging with legitimate users and eliminating all password based attacks in the process.

1Kosmos BlockID is a certified NIST 800-63-3 platform which supports remote identity proofing to comply with Know Your Customer mandates. And because our platform is FIDO2 and NIST 800-63-3 certified, it provides certified identity assurance level 2 (IAL2) and certified authentication assurance level 2 (AAL2) ensuring that agencies will know with a high assurance level, who is on the other side of the digital connection.

1Kosmos BlockID verifies credentials such as driver’s licenses, passports, and government-issued ID cards in 150 countries in accordance with W3C VC standards, with agent assistance if necessary. In addition, our platform complies with GDPR and SOC2 for handling and retention of sensitive data.

Security starts with strong verified identities.

1Kosmos BlockID digitally transforms identity enrollment for citizens so government agencies gain the security advantage they need to defend against phishing and fraudulent activities targeting citizens.

1Kosmos BlockID identity verification can move physical IDs into the digital world to fix this issue. Citizen enrollment starts by downloading a mobile application from Apple Store or Google Play. Next, they enroll their biometrics and scan credentials.

When citizens scan their identity documents (e.g., Drivers License, government issued ID, passport), our solutions capture the front and the “PDF417” barcode on the back, performing real-time ID card detection, classification and validation. For passports, the “MRZ” data is capturedUV, white light, and ink-depth checks are performed, and the embedded RFID chip is read and validated to the issuing authority. The result is verified citizen identity compliant to W3C VC standards.

Redefine multi-factor authentication with live biometric access controls.

1Kosmos strong biometric-based identity provides flexible levels of identity assurance and delivers all users passwordless experience.

1Kosmos LiveID is a feature that provides government agencies the highest level of assurance for the individual on the other side of the digital connection. LiveID is used for account enrollment and onboarding to ensure that the user is human and not a bot or somebody trying to spoof the identity.

Our approach to privacy and security ensures that anyone accessing systems or data is validated with strong FIDO2 authentication. Because biometric authentication is easy to use, every user and access attempt is verified with minimal friction and high assurance.

We use the Trusted Platform Module / Secure Enclave of a device (what you have) and a live biometric (what you are) to perform next-generation multi-factor authentication. In terminology familiar for Strong Customer Authentication, the device becomes the “possession element” and the biometric the “inherence element.” We provide certified authentication assurance level 2 (AAL2).

Our solutions offer a high degree of interoperability via API / SDK, easily integrating with just about any operating system, SSO gateway, or web-enabled application. This enables organizations to go passwordless with flexible levels of identity assurance on any target system and eliminate the need for 3rd party 2FA, one-time codes, and other external authentication devices.

The digital wallet enables a portable identity and allows users to manage and choose when and how they share their PII data.

1Kosmos BlockID digital wallet provides a secure platform for users to verify their identity in a secure, private and convenient way. With 1Kosmos BlockID government agencies can ensure that the person in possession of a digital wallet is the legitimate user to whom it was issued.

To unify the digital wallet, government agencies can account for multiple relationships in real life. Because users control their own identity through the digital wallet, the identity remains singular and therefore simplifies management even though the identity is registered for multiple online services (personas).

With 1Kosmos BlockID, there is no practical limit to the number of personas or accounts a user can have. Users can be enabled for any number of accounts — the platform binds their biometric to a FIDO2 certified credential, providing access to multiple accounts via one consistent experience without the need of a username or password. This is especially useful for governments as they transition services online and look to offer new services in the future.

Ready to go Passwordless?

Indisputable identity-proofing, advanced biometrics-powered passwordless authentication and fraud detection in a single application.