BlockID provides indisputable ID-proofing-based passwordless authentication, both powered by advanced, unspoofable, biometrics. W3C, GDPR, KYC and eIDAS compliant.
The BlockID private permissioned blockchain creates a permanent, immutable record that is invulnerable to tampering and the infrastructure is immune to hacking. The threat of a data breach is eliminated.
Current issues with Auth0.
Social logins do not require that an applicant be linked to a specific real-life identity, which makes ID proofing impossible and, consequently, is highly problematic in terms of security.
Employees using social login to access single sign-on apps to conduct business cannot prove who they really are. Professionals cannot verify the identity, suitability, and risks involved with maintaining a business relationship with a given customer, who leverages social login to transact online.
To that effect, Auth0 reaches the lowest level of identity insurance (IAL1) and authentication insurance (AAL1) per the NIST 800-63-3 guidelines when using a social media account for authentication.
The solution: BlockID + Auth0.
Auth0 customers can leverage BlockID to enhance their authentication and authorization functionality.
BlockID is a passwordless sign-on solution that verifies a user’s identity prior to the authentication process. BlockID enrolls users by triangulating a given claim with a multitude of company or government-issued documents as well as sources of truth, including advanced biometrics.
The authentication process involves a liveness test. The verification process includes the use of verifiable credentials in their digital form.
Customers can leverage BlockID’s and Auth0’s capabilities to reach the highest level of identity insurance (IAL3) and authentication insurance (AAL3) per the NIST 800-63-3 guidelines, is W3C and GDPR compliant and fully respects the Know Your Client (KYC) guidelines.
Auth0 also leverages the BlockID’s Private Blockchain Ecosystem, a distributed ledger that is virtually uncompromisable and that initiates peer-to-peer transactions while ensuring the immutability of the user’s identity information stored encrypted, greatly minimizing the likeliness of a data breach.