Entrust, a provider of payments, identities, and data security, this week announced a single-vendor enhanced authentication solution that integrates identity verification (IDV) and identity and access management (IAM) to fight deepfakes, phishing, account takeover (ATO) attacks and other threats.
By enhancing Entrust Identity as a Service (IDaaS) platform with Onfido’s AI-powered document and biometric verification, customers can deploy next-level identity authentication before allowing a privileged action or making a high-value transaction. This equips the IDaaS platform with a new layer of hardened security that resists identity fraud and phishing, secures digital interactions, and safeguards sensitive information.
Entrust was recognized in the 2023 Gartner Magic Quadrant for Access Management. In that report, Gartner predicted, “By 2027, integration with identity verification for onboarding, credentialing and recovery will be a standard feature of access management tools, potentially reducing account takeover attacks against these processes by 75%.”
“As physical and digital credentials merge, identity has become central to security. AI-driven threats, deepfakes, synthetic identities and ransomware gangs are driving a rising need for confidence in the identities of the people seeking to connect, access, and transact,” said Bhagwat Swaroop, president of digital security at Entrust. “That’s why identity-centric security is essential to making Zero Trust work. Entrust is the only provider that can integrate world-class IDV and IAM to enhance fraud prevention, reduce manual intervention, and improve the user experience.”
Once these solutions are combined, organizations can securely and efficiently authenticate users and validate their identities in real-time to protect against fraud, phishing and other account takeover attacks. In 2023, Onfido saw a 3000% increase in deepfake attempts, speaking to the critical need for identity verification.
Those organizations can also deploy IDV with ID and biometric checks as step-up authentication for employees or customers attempting a privileged action, such as a high-value transaction, or being issued a passkey or phishing-resistant token. They can also prevent lateral movement in the event of a breach by incorporating AI-driven facial biometrics and the IDV process enabled by risk-based adaptive authentication to enforce a higher level of assurance, while staying ahead of evolving deepfakes and cheapfakes.