xFace

Our biometric facial authentication is designed to provide maximum security, meet the most stringent regulatory requirements, and provide step-up authentication for high-value transactions that surpasses on-device biometrics. Built on proprietary Daon algorithms, driven by AI/ML technology, and secured against presentation attacks, xFace provides optimum protection from identity fraud while keeping customers happy with the ease of use inherent in face biometrics.

Proven accuracy
NIST certified biometric matching accuracy via FRVT for 1:1 and 1:N identification that is powered by AI.

Advanced anti-spoofing technology
The liveness detection leveraged by xFace is tested by iBeta to ISO 30107-3 Level 1 and Level 2 compliance for passive liveness.

Uniquely flexible and highly scalable
You choose your configuration: deployed on-premise or in the cloud; matching on-server or on-device; then, scale to hundreds of authentications per second.

True cross-channel support
Authenticate across mobile, web, and even in-person channels with a single technology. xFace can even be initiated on mobile devices by a contact center for step-up authentication.

Full user journey transparency
Full visibility into and control of matching probabilities, giving you the power to manage pass/fail rules and balance security with user experience.

Simplified recovery
Server-based biometrics can be used to authenticate from any device, which allows organizations to simplify registration and recovery with a reliable facial match.

Transaction Data Signing (TDS)
Generate digital signatures that are unique to each transaction based on a data confirmation action on a customer’s mobile device, signed by a private key for maximum transaction security.

Invisible multi-factor
A signature using a private key on the customer’s device, passed using FIDO messaging standards, provides PSD2 SCA and NIST AAL2 compliant multi-factor authentication that is transparent to your customer.

Multi-system push authentication
Apply xFace security to existing systems leveraging built-in SDK capability to push an authentication request to a customer’s mobile app.

When a customer attempts to access their account or complete a high value transaction, they are asked to scan their face. The interface provides prompts to assist in capturing a suitable image and the image is automatically captured.

Instantly, the image is processed for presentation attack detection and matched to the biometric on file. If it meets the set standards, the customer is either granted access or moved to a second factor.

See it for Yourself

Why should I choose server-based biometrics over device-based biometrics?
Server-based biometrics offer a step up in overall security by removing potential device security issues from the equation. While device-based biometrics might be fully suitable for general access, server-based biometrics would be preferred for high-value access use cases, like moving money, changing PII, etc.

Can I trust that my customer’s biometric data will be safe on a server?
Absolutely. All of our biometric data is encrypted, so even if it was accessed, which has never happened, a key would be required to decipher it. Even if that were to happen, unlike passwords and PINs, biometrics can’t be reverse engineered in a way that it could be used to gain system access.

Do I need to add a second authentication factor when using xFace?
We always recommend multi-factor authentication for the highest level of security. While xFace can leverage private device keys as an invisible authentication factor when using a mobile app, its cross-channel capabilities would require a different secondary factor when accessing an account through a website or kiosk to provide multi-factor protection.