Mobile Biometric Authentication  /  Knomi™2019-04-29T10:14:01-04:00

Mobile Biometric Authentication Framework

Knomi™ is a mobile biometric authentication solution comprised of a family of biometric matching and attack detection algorithms that use face and voice to enable secure and convenient multifactor authentication without passwords.

Knomi can also be used for  identity proofing as part of a mobile onboarding solution, with advanced security checks that authenticate driver’s licenses and passports, and spoof-resistant biometric facial matching between the live and printed images.

Knomi’s advanced presentation attack detection algorithms detect not only authentication spoofs, but also false non-match spoofs that impact the ability to use the facial images for other biometric identity proofing functions such as watch list checks and duplicate prevention.

Knomi Face and Voice Recognition

ARRANGE A DEMO

Features

NIST-tested algorithms

NIST-tested algorithms

Aware facial matching algorithms are tested by NIST, with performance reflected in their most recent FRVT report. Voice matching algorithms have also been evaluated in open tests.

Highly configurable UX and security features

Highly configurable UX and security features

Knomi offers both face- and voice-based algorithms, with a high degree of configurability and a variety of workflows,, enabling flexible optimization of user experience and security features.

Robust presentation attack detection

Robust presentation attack detection

Knomi employs numerous face- and voice-based spoof detection techniques to prevent presentation attacks. Paper photos, digital stills and videos, and masks are addressed, as are voice recordings and synthetic speech.

Multimodal performance

Multimodal performance

Knomi provides multimodal options that collect face and voice simultaneously , and use proprietary fusion algorithms to boost matching and attack detection performance without compromising convenience.

Identity proofing and document authentication

Identity proofing and document authentication

Knomi DocAuth performs identity proofing ideal for mobile onboarding, with ID authentication, spoof-resistant biometric comparison of live and ID face images, and facial images fully vetted as suitable for biometric search.

Device- or server-centric architecture

Device- or server-centric architecture

Knomi supports either device-centric approach, with all liveness detection, biometric matching, and template storage performed on the device, as well as a server-centric approach, with centralized liveness, matching, and storage.

IAM integrations

IAM integrations

Knomi Server provides integrations with market-leading  IAM platforms, enabling enterprises to deploy multifactor authentication using mobile biometrics instead of passwords.  

FIDO® Certified

FIDO® Certified

Knomi includes face, voice, and face+voice authenticators that are UAF v1.1 Level 1 certified, as well as certified FIDO Client and FIDO Server components.

iOS, Android, Windows, Linux support

iOS, Android, Windows, Linux support

All mobile components are available as a la carte SDKs with reference application code and libraries for both iOS and Android.  Server-side software can be deployed in Windows or Linux.

Applications

Mobile banking

Banks can incorporate Knomi into their apps to make mobile onboarding and login more secure and convenient for their customers.

Enterprise security

Companies can use Knomi to make access to their digital assets more secure for their workforce.

Government

Government agencies can use Knomi to make logical and physical access control more secure for employees and contractors.

Knomi™ mobile biometric login for secure, convenient enterprise security.

Architecture support: device- and server-centric, including FIDO® Certified

Three architectures are supported: Device-Centric, FIDO® Certified, and Server-Centric. Knomi D offers software that performs all functions on the device.  Knomi F adds FIDO Certified and FIDO Ready components. Knomi S moves functions to the server, including biometric template creation, matching and storage.

Knomi DocAuth can be implemented in either a device-centric or server-centric architecture.

Mobile Biometric Software

Knomi D

Device-Centric Authentication

Biometric template storage and matching is performed on the device, as are algorithms for autocapture, liveness detection, and spoof detection.

  • Mobile Face+Voice Authenticator.  This authenticator applies both voice and face authentication, with simultaneous capture for an ideal user experience.  
  • Mobile Face Authenticator. SDKs running on the device to perform facial image capture and analysis designed to quickly capture high-quality facial images and detect spoof attempts.  Biometric template generation and comparison are also performed. Incorporates elements of Aware’s PreFace and Nexa|Face™ SDKs.

Knomi F

FIDO® Certified Authentication

Knomi F is a family of software products for biometric authentication that are FIDO® Certified as conformant with the specifications of the FIDO Alliance  and interoperable with other FIDO-certified products.

  • FIDO Face Authenticator. FIDO Face Authenticator allows a user to login to a mobile application of a relying party (such as a banking app) using their face for authentication. It applies interactive liveness detection, including eye blinking. The facial biometric sample never leaves the security boundaries of the authenticator application. FIDO Face Authenticator is Level 1 UAF version 1.1 FIDO Certified for Android and iOS.
  • FIDO Face+Voice Authenticator.  This authenticator applies voice and face authentication and liveness detection, with simultaneous capture for an ideal user experience.  This authenticator is Level 1 UAF version 1.1 FIDO Certified for Android and iOS.
  • FIDO Client. FIDO® Client is the intermediary application that helps to bind FIDO authenticators with the relying party mobile application. FIDO Client can look up all FIDO authenticators on the device, and communicate via JSON messages standardized by the FIDO ASM API. FIDO Client is FIDO Certified.
  • FIDO Server. FIDO® Server enables a relying party server to offer FIDO-based login from their mobile applications. FIDO® Server encapsulates the FIDO features required at the server, such as maintenance of the FIDO login policies, management of the public keys, and verification of the signatures created on the mobile device. FIDO Server is FIDO Certified.

More information about FIDO Certified authentication products can be found here.

Knomi S

Server-Centric Authentication

Biometric template storage and matching are performed on the server, with algorithms for autocapture and liveness/spoof detection operating on both the device and on the server.

  • Mobile Face Client. Application running on the device to perform facial image capture and analysis designed to capture high-quality facial images quickly and to detect spoof attempts. Built upon the PreFace Mobile SDK.
  • Face Authentication Service. Server-based software API for facial template storage and matching. Built upon the Nexa|Face SDK.
  • Face Liveness Service.  Server-based API for facial image analysis, including liveness detection and spoof detection. Built upon the PreFace SDK.
  • Voice Authentication Service.  This service applies high-performance voice authentication, offering an alternative to facial recognition when preferred by the user or in conditions when facial recognition is insufficient.
  • Voice Liveness Service.  This service provides analysis of biometric voice samples to detect attempted spoofs, such as with recorded or synthesized samples.

Knomi DocAuth

Document authentication and facial matching for identity proofing upon mobile onboarding

Knomi DocAuth

Knomi includes a solution for document authentication and facial matching, which is ideal for biometric identity proofing as part of a mobile onboarding process using a government-issued credential such as a driver’s license or passport.  Knomi DocAuth can be implemented in either a device- or server-centric architecture.

  • Assisted capture of credential (front and back)
  • OCR-powered capture of printed and bar-encoded data
  • Detection of document security features (white light)
  • Automated capture of printed  facial image and live facial image
  • NIST-tested facial recognition algorithms
  • Robust, multi-algorithm  face spoof detection for authentication and identity proofing (paper, digital, video, 2D/3D masks)
  • Comparison of printed to bar-encoded data
  • NFC reading of e-passport chip data
  • Device-or server-centric architecture

Knomi DocAuth performs assisted capture of the front and back of the credential, and then automatically extracts the facial image, printed information, and bar-encoded data. It then collects a live facial image, applying several attack detection algorithms to prevent spoofs. A facial match is calculated and analysis of the collected data performed to verify the authenticity of the credential and the identity of its possessor.

Knomi’s advanced face-based presentation attack detection algorithms detect not only authentication spoofs, but also false non-match spoofs that impact the ability to use the biometrics for other biometric identity proofing functions such as watch list checks and duplicate prevention.

Mobile Document Authentication

Knomi Server

Integration with market leading identity and access management platforms

Knomi Server is the component of the Knomi mobile biometric authentication framework that can be integrated with identity servers to quickly enable them with password-free multifactor authentication (MFA) using biometrics on a mobile device.

For organizations using an identity and access management (IAM) platform to implement secure access control, SSO, and federation for employees or customers, adding Knomi enables users to login to assets normally accessible by PC or browser with a username and password by instead biometrically authenticating on their mobile device in an “out-of-band” fashion. Knomi Server has been integrated with several leading identity and access management products. Any enterprise can integrate Knomi to enhance their identity platform with multifactor authentication using out-of-band mobile biometrics, making login to their online assets more secure and convenient for their employees.

Out of Band Multifactor authentication using mobile biometrics

Out of Band Multifactor authentication using mobile biometrics

Arrange a Demo

Watch the animation to learn how Knomi enables omnichannel authentication for banking and other applications.

Omnichannel authentication without passwords: biometrics provide consistency, convenience, security

Omnichannel customer engagement is about establishing a presence across multiple devices and digital channels and then making the experience across those disparate channels as seamless as possible. This is especially vital in retail and banking. [...]

Aware Biometrics Blog makes Top 25 Biometric Blogs list

Biometrics Blogs List. The Best Biometrics Blogs from thousands of Biometrics blogs on the web using search and social metrics. Subscribe to these websites because they are actively working to educate, inspire, and empower their readers [...]

Load More Posts
2019-04-17T10:59:26-04:00

Mobile biometric authentication: Device-centric vs. server-centric architecture  |  WHITE PAPER

White Paper Mobile biometric authentication: Device-centric vs. server-centric architectureMULTIPLE BIOMETRIC MODALITIES FOR AUTHENTICATION CAN ACHIEVE HIGHER BIOMETRIC PERFORMANCE.IntroductionBiometrics use “inherent” factors (something the user is) to authenticate a user’s identity. Relative to knowledge- and [...]

2019-04-17T10:59:26-04:00

Mobile biometric authentication: A password-free future comes into focus

Mobile biometric authentication: A password-free future comes into focus Introduction If you looked into your Magic 8-Ball and asked, “Will I ever be able to stop using passwords for authentication?” it would certainly reply: “Outlook good.” [...]

2019-04-17T10:59:26-04:00

Mobile biometric authentication: Multimodal approaches for improved matching and spoof detection  |  WHITE PAPER

White Paper Mobile biometric authentication: Multimodal approaches for improved matching and spoof detection Identity fraud: a trillion dollar problem The vast majority of modern authentication implementations strive to maximize both security and convenience; that is, to: [...]

2019-04-17T10:59:26-04:00

How Biometrics Expand the Reach of Mobile Banking

How Biometrics Expand the Reach of Mobile Banking Download PDF here if you are having trouble viewing. https://www.aware.com/wp-content/uploads/2019/03/eBook_Biometrics-Mobile-Banking_single-pages_0319.pdf The Mobile Banking Opportunity For financial institutions, mobile banking is a cost-effective way to reach new [...]

2019-04-17T10:59:27-04:00

What is Biometrics as a Service? Benefits and Use Cases  |   INFOGRAPHIC

What is Biometrics as a Service? Benefits and Use Cases Infographic Biometrics-as-a-Service (BaaS) solutions from Aware are an attractive alternative to traditional biometric software models. This technology allows [...]

Load More Posts