Home » Use Cases

Maximize Account Security with 3FA and AI

The main point of focus of end users logging into their accounts should always be based around verifying if they are who they say they are, to protect their security. Nowadays, 2-factor authentication (2FA) is showing to be increasingly not enough to stop hackers gaining access to accounts. 

An additional layer of security along with credentials is the use of facial recognition. This is close to impossible to replicate and thus offers the highest level of security. This does not mean providing a selfie which hackers can take from social networks, but using customers’ live biometric data in real time.

3FA Overview

Infobip offers a fully in-house solution which covers all aspects of capturing biometric data, which allows you to take your security to the next level. 

Two-Factor Authentication 

2FA as a security standard is now used at a majority level. What happens is, the user enters their login information (username and password), usually followed by a phone number on which they will receive an authentication code by SMS. 

Three-Factor Authentication 

3FA adds an additional layer which is the now the most advanced on the market for security. After end users have provided their login information and authentication code, they will receive a link via SMS which will take them to a secure webpage where they can provide their biometrics. 

This is how the third layer of authentication works: 

  • The end user takes a picture of their ID card. 
  • They then take a selfie to prove that they match the ID card. 
  • They then pass the liveness test in which they move around so Infobip can verify it is the actual person live (not a picture or a video). This step is called enrollment. 

Once enrolled, the user will only have to complete the last two steps in the third layer to verify themselves for future logins. 

By using 3FA, you are giving your end users the highest possible level of security, through a simple and easy integration with Infobip. 

Process Workflow

3FA FLow

IMPLEMENTATION STEPS

Once you have setup your 2FA, the third layer of authentication consists of only two additional API calls. One to trigger the generation and sending of the biometric link, and the other for the message template in which it will sit. 

  1. Create the 3FA trigger - When the user tries to login to the client platform, an API call is triggered and sent to Infobip to start the authentication process. At the third level of authentication, Infobip receives the call for SMS and Biometrics, at which point you need to send out the biometrics link.
{ 
  "merchant_id": "1", 
  "bioReference":"{{bioReference}}", 
  "config": "enrollment,liveness,debug", 
  "startParametars":{"country":"MRZ"}, 
  "branding": "[3fatesting]", 
  "language": "en", 
  "backend_url": "[https://api.client.com/webhook/{{sessionId}}]", 
  "return_url": "[client URL]", 
  "cancel_url": "[client URL]", 
  "merchant_ref": "[client merchant ref]" 
}

Make sure to replace the values in the square brackets in the example above. Also note that this is for a generic country with language set to English. Make sure to adjust as required.

  1. Create the response with Biometrics link - The next step is to set up your message template in which your biometrics link will be sent the end user via SMS. For this you will capture the {{idURL}} with the path $.info.url, from the response and insert it into your message body.
{ 
"messages": [ 
   { 
   "from": "00000000000", 
   "destinations": [ 
     { 
     "to": "phone_number" 
     }, 
     { 
     "to": "phone_number" 
     } 
   ], 
   "text": "Please submit your biometrics using the following link: {{idURL}}.", 
   } 
  ] 
} 

Data that can be gathered via webhook is the same data as on the ID card. The path on which you can gather this is $.data.dataOnIDcard (e.g. $.data.name", "$.data.surname" etc.)

PRO TIP

3FA is a real game changer in the market for enhancing security. Currently, there are few companies who are using biometrics for authentication. As well as using biometrics as a third layer of authentication, the solution can also be implemented to be the sole method of authentication if you prefer.


Related Products

Reach more customers worldwide with crystal-clear voice and video communications.

Reach more customers with faster, more reliable messaging.