iProov Deepfake Resilience Standard Defines New Global Trust Level for Biometric Security
iProov has become the first biometrics vendor to meet the new U.S. National Institute of Standards and Technology (NIST) SP 800-63-4 digital identity requirements. The independent validation confirms iProov’s ability to resist deepfakes and AI-generated attacks while ensuring secure and inclusive biometric verification.
The NIST SP 800-63-4 guidelines set stricter technical and security standards for digital identity systems. The update adds requirements to address new threats like AI-generated forgeries and deepfakes. These guidelines are used not only by the U.S. government but also by global regulators and enterprises as a benchmark for trusted digital identity systems.
iProov’s Dynamic Liveness technology, powered by its patented Flashmark system, verifies that users are physically present. It captures unique, real-time facial biometric data that prevents spoofing, injection, and replay attacks. The process supports high-assurance levels AAL2 and AAL3, ensuring users’ cryptographic keys remain secure.
“iProov is the only vendor proven to deliver the highest level of protection against real-world biometric threats,” said Andrew Bud, iProov founder and CEO. “As AI threats grow more sophisticated, our approach ensures digital identity remains secure and reliable.”
Blake Hall, CEO of ID.me, added that biometric verification remains one of the most secure ways to confirm identity and prevent fraud. He praised iProov for meeting rigorous NIST standards while defending against AI-driven risks.
Recent testing confirms iProov’s deepfake resilience and compliance with several international benchmarks:
- Injection Attack Detection (IAD): Certified under CEN TS 18099 Level 2 for protection against deepfakes and forged media, tested by Ingenium Biometrics.
- Presentation Attack Detection (PAD): FIDO Face Verification Certification Program approval for mask, replay, and deepfake resilience.
- High-Assurance Identity Proofing: Certified to eIDAS 2 Level High (IAL3/AAL3 equivalent).
- Information Security: SOC 2 Type II and CSA STAR Level 2 certifications for mature cloud security.
- Accessibility & Usability: WCAG 2.2 Level AA and Section 508 compliance.
- Data Privacy: GDPR compliance under eIDAS 2 as a Qualified Trust Service Provider.
Trusted by the U.S. Department of Homeland Security, the U.K. Home Office, and global banks like ING and UBS, iProov continues to lead in science-based biometric verification. The company’s Security Operations Center delivers continuous threat monitoring to protect users and institutions from emerging AI threats.
