NIST's Digital Identity Guidelines serve as an essential framework for modern security. SP 800-63-4 provides updates to these Guidelines with requirements for strong phishing-resistant authentication methods like FIDO passkeys.
TrustSwiftly provides a holistic NIST IAL3 compliant solution with chat, video, facial recognition with liveness detection and document authentication to provide robust NIST IAL3 verification to help reduce impersonation and fraud.
IAL3 identity proofing
The National Institute of Standards and Technology Identity Proofing Standards provide a framework for confirming with a high degree of confidence that an individual's digital identity accurately reflects their real world identity. They feature three levels of assurance designed to deter more sophisticated attacks. Of these levels of assurance, IAL3 offers the highest degree of protection requiring in-person verification, typically reserved for high stakes transactions such as accessing secure facilities or financial services.
IAL3 mandates both an on-site attended ID proofing session with an impartial referee as well as an independent referral referee to make limited risk-based decisions when an application fails to fulfill specific proofing processes (see section 3.13 for minimum training requirements). Furthermore, on-site ID proofing sessions verify all of the applicant's supplied information is correct and complete.
NIST IAL3 compliant solution
The NIST Digital Identity Guidelines remain a cornerstone of modern security, emphasizing extensive identity proofing and strong, phishing-resistant authentication. Their latest version also encourages continuous evaluation, while relaxing hardware requirements for AAL3 to encourage wider adoption of high-security standards on commercial devices.
Assertions are digital statements sent from an identity provider (CSP) to a relying party (RP), which provide confidence about its authenticity. NIST 800-63A IAL3 defines three levels of assurance (IAL, AAL and FAL). Each level measures how confidently an assertion should be accepted by its recipient (RP).
At IAL3 identity proofing level, an on-site attended session - either physically present or remotely - is mandatory to limit highly scalable impersonation attacks by verifying whether or not the claimed identity actually belongs to that user. It is the strictest verification level requiring physical presence either in-person or remotely.
Trust Swiftly
TrustSwiftly is a FIDO Certified passwordless authentication and identity verification solution, helping organizations meet NIST IAL3 guidelines directly via its remote but supervised ID proofing process. This includes document verification, biometric comparison with liveness detection capabilities, cryptographic authentication for enhanced phishing resistance and man-in-the-middle protection capabilities and cryptographic authentication for increased phishing resistance and man-in-the-middle protection.
Contrary to IAL2, IAL3 requires evidence linking an applicant's claimed identity with real world existence; however, CSPs may use pseudonymous identities when conducting transactions under this category.
TrustSwiftly allows customers to meet IAL3 requirements via chat, video, facial recognition with liveness detection or document authentication. Users can connect with a live agent more conveniently than kiosks when verifying their identities - decreasing cyber liability insurance costs and operational expenses through reduced password resets while supporting step-up reproofing based on risk. In addition, this solution complies with FedRAMP high compliance with mobile driver's license verification as ID&V evidence and in-person/remote authentication as step up reproofing/reproofing via in person/remote authentication or remote auth.