Safer and more user-friendly solutions: Crucial to not losing customers
Published: October 13, 2022, 10:49 am Updated: October 15, 2022, 6:03 pmTurn your head, and smile at the camera. In countries without eID, you film yourself when you buy products or services from regulated businesses online to prove you’re human and not an advanced attempt at identity fraud. But now that whole process can be replaced with a seemingly simple selfie.Read more about identity verification and KYC solutions In Sweden today, the vast majority of adults have one or more e-identifications. This means that it is relatively quick and easy to identify oneself in contacts with, for example, banks or authorities via the internet. – But in most countries outside the Nordics, this system does not exist. There, the customer must instead prove his identity by going through a series of different steps, such as taking a photo of his passport and sending in the photo, sending in a copy of an energy bill to verify his address, or presenting other register extracts, says Sergei Sergeev, product manager at regtech company ZignSec. One of the steps that can be included in such a verification process is to film yourself and perform certain movements following instructions on the site so that the system can analyze the footage and determine whether you are a real person rather than a robot attack. The process is called “active liveness detection”, in Swedish approximately “to actively show that you are a person”, but even though it is relatively common, a lot of “active liveness” solutions can attract fraudsters and at the same time repel legitimate customers. – Firstly, it is relatively easy for fraudsters to cheat the system. Many solutions are predictable and can therefore be manipulated by sophisticated fraudsters. Because it is clear exactly when the process starts and how it goes, fraudsters can try, and in some cases have succeeded, to replicate blinking, smiling and moving the head from side to side with “video replay attacks” or by using “deepfake” screenshots.Sergei Sergejev, product manager at the regtech company ZignSec. Secondly, the process around “active liveness detection” is a bit complicated for the user. The system gives instructions on movements to be performed, for example turning the head, but it is not always easy to achieve. – This often leads to the customer having to take several shots, which takes time, and can also feel a bit embarrassing if you are sitting in a public environment.
Easier and more intuitive
In order to develop security and increase user-friendliness, there is now also “passive liveness detection”. – Then you don’t have to film yourself, but you are only asked to take a selfie and send it in. It’s easier and more intuitive for the user and makes the process faster, easier and less ridiculous. In addition, it’s safer. – When you take the selfie, a short video will be recorded by the system, but you don’t know exactly when it happens, and thus it becomes more difficult for fraudsters to know exactly when they have to try to get around security. So far, “active liveness detection” is still used in many markets and in many industries, but the passive variant is growing rapidly. – I would not say that “active liveness detection” is bad, but if you want to focus on speed, user-friendliness and further strengthening security, the passive variant is better in all three areas. Since a while back, “passive liveness detection” is also available as an option in ZignSec’s identity verification portal and KYC processes, Know Your Customer. – Which variant to choose as a company depends on local conditions. In Germany, for example, customers feel safest with “active liveness detection”, and companies must take that into account. But, as I said, the passive variant makes the whole process much faster, and it can be decisive in not losing customers to competitors. No one wants to lose customers because of a reputation for slow, cumbersome processes.Read more about identity verification and KYC solutions The article is produced by Brand Studio in collaboration with ZignSec and not an article by Dagens industri