FedRAMP High compliance demands stringent identity verification standards in the industry, but for remote-first companies meeting IAL3 requirements can be both costly and inefficient.

Traditional IAL3 identification proofing requires attending an on-site attended session featuring verified biometrics and stringent evidence validation, but Trust Swiftly’s remote ID verification platform offers an adaptable solution that combines automated verification with human oversight.

IAL3 Requirements

Identity Proofing and Security Control Requirements in NIST 800-63A IAL3 are of an extremely stringent nature, providing critical identity-related controls. Their requirements provide additional safeguards against fraud and phishing attacks by verifying whether claimed identities match up to real world identities of claimants – helping prevent fraud and phishing attacks as a result. IAL3 requirements represent one of three tiered assurance levels such as IAL2, which also exists.

IAL3 requires proofing that relying parties (RPs) can verify an individual’s real world identity using multiple sources, including documents and biometrics. NIST IAL3 verification processes should also be utilized to strengthen comparison processes and ensure identity evidence belongs only to genuine individuals; this helps avoid impersonation attempts.

TrustSwiftly provides an accessible hardware-based remote solution to meet IAL3 requirements, saving companies both time and money by eliminating risky password resets. This enables businesses to reduce cyber liability insurance costs while improving employee productivity and decreasing lost/stolen device costs. Furthermore, this solution assists with FedRAMP High authorization compliance as well as offering robust IAL2/3 solutions for distributed workforces.

IAL3 Proofing Agents

NIST 800-63A IAL3 digital identity guidelines mandate the highest level of security for privileged accounts. To meet them, document validation and biometric comparison must be combined with stringent oversight in order to reduce fraud, impersonation, and data breaches – necessitating in-person proofing sessions which are time consuming, costly, inflexible for remote workers, causing much frustration among users.

Physical agents can be one way to meet IAL3 requirements, but these agents are expensive and time consuming compared to remote workers. Furthermore, using physical agents opens up new risks, including socially engineered fakes.

IAL3 compliant solution that offer an easier and scalable method of remote IAL3 verification that still meets NIST standards and FedRAMP High compliance. Leading services use technology-enhanced methods like multispectral UV light analysis to detect document forgery and facial recognition with liveness detection to verify claimed identities in the real world – creating an enhanced user experience while offering strong protections against advanced threats such as deepfakes, voice clones and social engineering attacks.

IAL3 Kiosks

IAL3 requires on-site attended identity proofing in order to validate an applicant and their documents supporting their claim of identity, increasing cost and risk when conducting high assurance identity verification; also mandating stricter evidence validation, verification, and biometric capture requirements than can be met remotely.

IAL3 identity proofing requirements have historically impeded government adoption due to their onerous administrative burdens for citizens and significant travel costs for employees. But thanks to new technologies, like mobile IAL3 ID Proofing kits and kiosks as well as Supervised Remote Identity Proofing (SRIP), new methods are emerging that eliminate such hurdles by offering self-service, high assurance verification with chat, video, facial recognition with liveness detection capability, document authentication support as well as stepwise re-proofing depending on risk levels.

Organizations will require a device capable of connecting to Trust Swiftly real time and collecting biometric and evidence in real time, using it as part of the necessary biometric collection process and documenting evidence collection process. Such device should be secure, locked-down hardware-backed authenticator managed through full lifecycle of CSP management system.

IAL3 Proofing Session

NIST IAL3 requires the highest level of identity proofing, including document and biometric verification and binding. As this process requires more in-person interaction than its counterpart IAL2, it should only be utilized when errors in identity could have grave repercussions.

Traditional IAL3 verification was completed through an in-person interview where someone would review identification documents and capture biometrics of an enrollee, an expensive and inconvenient process which wasn’t suitable for remote workforces.

Trust Swiftly’s IAL3 remote solution is an economical and scalable way to meet NIST IAL3 requirements. Through turnkey kiosks equipped with custom apps, our technology securely captures multiple forms of biometrics – face matching, liveness detection and fingerprint capture being among them – providing full IAL3 proofing sessions, including face matching, liveness detection and dual iris and fingerprint capture. Trust Swiftly’s hardware-based verification solution also meets FedRAMP High approval requirements while meeting NIST 800-63A revision standards by prioritizing stronger authentication protocols over weaker ones offered by other vendors.