iProov, a biometric identity verification provider, said it met the biometric verification requirements in the new NIST Special Publication 800-63-4 Digital Identity Guidelines.
The compliance is based on recent independent tests of iProov Dynamic Liveness by an ISO-accredited lab using the new CEN18099 injection attack standard, along with the company’s FIDO Face Verification Certification for presentation attack detection and other certifications related to accessibility, data privacy, and cybersecurity.
“iProov is the only vendor proven to deliver the highest level of protection against the full spectrum of real-world threats,” said Andrew Bud, founder and CEO of iProov. “This matters because biometric verification is becoming the root of trust for authenticity in the AI world, and Gen-AI based attacks are now too sophisticated for legacy systems to stop them.”
Bud said the iProov Security Operations Center provides continuous threat monitoring, which gives customers protection designed for today’s risk environment.
The NIST SP 800-63-4 Digital Identity Guidelines outline technical and security requirements for digital identity systems used by the US federal government. The latest update strengthens the criteria for biometric verification and adds measures to counter deepfakes and other AI-driven attacks. It also requires phishing-resistant authentication for high-assurance scenarios under Authenticator Assurance Level 3 (AAL3).
Although NIST develops these guidelines for use in the United States, governments, regulators, and enterprises in other countries often use them as a reference for secure and trusted digital identity systems. Biometric technologies that follow the standard must complete extensive tests to confirm performance, resistance to spoofing, usability, and fairness across users.
iProov Dynamic Liveness uses the company’s Flashmark technology to verify whether a person is physically present during a facial authentication session. The system captures real-time biometric signals that help prevent spoofing and injection attacks, which are important for AAL2 and AAL3 requirements. It also helps protect AAL3 cryptographic keys from remote compromise.
“ID.me protects access to some of the nation’s most critical services through trusted, high-assurance digital identity,” said Blake Hall, founder and CEO of ID.me. “While NIST recognizes multiple verification pathways, biometric verification remains among the most secure and inclusive ways to confirm identity and prevent fraud.”
iProov said its biometric verification platform is supported by internationally recognized certifications and independent testing results that match the key requirements of NIST SP 800-63-4.