The Top 6 Biometric Authentication Solutions

BehavioSec, a LexisNexis company, is a behavioral biometrics and continuous authentication provider known for its powerful fraud detection platform. Specializing in behavioral biometrics, its multimodal solution verifies users based on their habits and patterns of behavior, and can be leveraged as an additional factor in an MFA process or to continuously authenticate users throughout the lifecycle of their engagement with a particular platform. This enables organizations to implement both risk-based authentication and a Zero Trust approach.

BehavioSec’s solution works silently in the background, authenticating users passively and frictionlessly, yet with a high degree of accuracy. Once deployed, the solution uses machine learning to analyze user interactions—such as the way they type, interact with their smartphones, or move their mouses—alongside various contextual factors to compare them with past behaviors and determine a “risk score” based on how well they match. Admins can also analyze authentication activity and analytics, as well as user risk scores via an easy-to-use dashboard.

BehavioSec’s biometric authentication solution works across all devices and platforms and is scalable, easy to integrate, and can be deployed on-premises or in the cloud. Users rate the platform as high quality, innovative, simple to integrate, and effective at reducing false positives. We recommend BehavioSec for large enterprises—particularly in banking, e-commerce, and finance—that are looking for a passive, frictionless solution to provide high levels of protection against fraud.

BIO-key is an established identity and access management provider with expertise in biometric authentication as well as biometric hardware technologies, such as fingerprint scanners. In 2020, BIO-key’s acquisition of PistolStar brought PortalGuard into its portfolio, an access management platform that provides seamless single sign-on and flexible MFA authentication. The platform enables users to authenticate their identities in various ways, including using BIO-key’s trusted passwordless biometric authentication capabilities.

Using PortalGuard, users can log on password-free by replacing passwords with biometric scans, or alternatively leverage biometrics as part of an MFA process. To complement this platform, BIO-key’s recently-launched mobile app MobileAuth uses PalmPositive technology to verify user identity. To authenticate using this technology, users must scan the palms of their hands using their device’s camera. The app then analyzes the scan on the server rather than on the device, and grants the user access if the scan matches their pre-enrolled biometric template. For admins, the platform also comes with a central dashboard from which they can configure access policies and view real-time activity reports.

Users praise PortalGuard for its smooth implementation, easy two-factor authentication capabilities, and flexibility when integrating with various systems. The platform also integrates with a number of trusted identity and access providers, including Duo, Microsoft Authenticator, Yubico and Authy. We recommend BIO-key’s PortalGuard for organizations in the finance, government, healthcare, and commercial industries that are looking for an established vendor to provide seamless, password-free SSO and MFA capabilities using biometric authentication.

iProov is a biometric authentication provider that specializes in face and palm verification to authenticate users and prevent spoofing. Its Face Verifier and Palm Verifier solutions are built using patented Genuine Presence Assurance technology, which determines whether a user attempting to log in is the right person, a real person, and is authenticating in real-time. Both solutions can also be used as primary authentication, as part of an MFA process, or as step-up authentication.

iProov’s biometric solutions use deep-learning technologies as well as built-in replay-attack and spoof prevention to provide the highest level of security and accuracy during authentication attempts. To authenticate via Face Verifier or Palm Verifier, users must present their faces or palms to their front-facing camera. The technology then compares this authentication attempt to that user’s pre-enrolled biometric template, granting access only if it matches. iProov’s iPortal also provides security teams a centralized reporting area where they can monitor and manage user administration, provisioning, and integrations.

The Face Verifier and Palm Verifier solutions are cloud-based and can be used across all devices that have front-facing cameras—making them incredibly scalable and flexible across a range of use cases. Integrating the solutions with existing technologies is also simple, with many organizations finding their integration processes quick and easy to complete. Trusted by public sector organizations, governments, and banks to securely and accurately verify user identity, we recommend iProov’s advanced biometric authentication solutions for large enterprises that need a high level of assurance that users accessing their systems are authorized to do so.

Prove is a market-leading provider of innovative identity proofing and affirmation solutions that verify users’ identities using just their smartphones. Prove’s solutions are built around Prove’s unique “Phone-Centric Identity” model, which enables secure, frictionless, and omni-channel access to web and mobile applications based on information derived from users’ cell phones. Prove Auth is Prove’s passwordless, OTP-less authentication solution, which organizations can use to authenticate users with biometrics, push notifications, or Prove’s Phone-Centric Identity technology.

With Prove Auth, organizations can verify end users’ identities using in-device biometrics, such as a face or fingerprint scan, using push notifications sent via an authenticator app, or using Prove’s Phone-Centric Identity model. This model analyzes billions of mobile, telecom, and device usage signals from the user’s smartphone to verify that the user owns the phone, they’re in possession of it in real-time, and that the login attempt isn’t displaying any suspicious or high-risk behaviors.

Using this information, Prove Auth grants or denies access—increasing account security and minimizing the risk of fraud, whilst providing a streamlined, intuitive login and authentication experience for each user. Organizations that want to “step up” their authentication even further can implement multi-factor authentication using a combination of the three available methods, e.g., using Phone-Centric Identity as the main method of authentication and enforcing biometrics to step up authentication for risky login attempts.

Existing users praise Prove Auth as being a reliable, sophisticated solution that provides a seamless login experience for their end users. Overall, we recommend Prove Auth as a strong solution for both SMBs and larger enterprises looking to implement a passwordless, frictionless identity verification solution that will help mitigate account takeover and fraud.

Launched in 2016, TypingDNA is a behavioral biometric authentication vendor that specializes in verifying users based on the way that they type. Its solutions work by leveraging data engineering and deep learning algorithms to analyze typing behaviors and patterns to recognize and verify users in seconds. Using this technology, TypingDNA offers a two-factor authentication product, Verify 2FA, as well as a continuous authentication solution, ActiveLock.

To initially register to use TypingDNA’s products, users need only to provide one typing sample. From this sample, the system analyzes their typing behaviors and can then use this data to recognize them during future authentication attempts. Verify 2FA works by asking users to type only four words into the system to verify their identities. If their typing pattern matches their profile, they’re granted access in seconds. If it doesn’t, but the user happens to be genuine, they can access their account via an SMS-based one-time passcode. ActiveLock, on the other hand, works in the background, monitoring typing behavior as users go about their day and continuously authenticating them. If it detects a typing pattern that doesn’t match the user that registered, it can automatically lock the device or trigger a silent alert.

TypingDNA’s biometric authentication solutions work across all keyboards and devices, and are easy to roll out to users. Verify 2FA also integrates with identity and access providers such as Okta, Keycloak, and Active Directory. Users find TypingDNA’s solutions powerful, responsive, easy to use, and frictionless. We recommend Verify 2FA and ActiveLock for businesses across all industries—especially finance, education, and retail—that are looking for a seamless solution that can not only verify the right users, but also identify when the wrong ones use a device they aren’t authorized to use.

Jointly founded by BBVA and Das-Nano in 2017, Veridas is a biometric authentication vendor that develops face and voice recognition software for businesses globally. Veridas Voice Biometrics is its voice recognition solution, which is based on its das-Peak speaker verification engine and can authenticate user identity using less than three seconds of audio.

Users can sign up for the service using just a three-second voice recording. From this, the das-Peak engine uses AI to measure the unique physical characteristics in their voices, such as accent and speed. The system then creates a biometric “vector”, which is a mathematical descriptor of that user’s characteristics and can be used to compare future authentication attempts with. Because the engine only measures characteristics, it doesn’t take into account the context of their words, so users can say anything they want—and, in any language—to verify their identities. The system can also detect hacking attempts that use pre-recorded voices and easily thwart replay attacks.

Veridas Voice Biometrics is an easy-to-use cloud-based solution that claims a 99.5% accuracy for its voice recognition technology. Users praise the product for its accuracy, high-quality user experience, flexibility for multiple use cases, and high levels of support when needed. We recommend Veridas Voice Biometrics for large enterprises—particularly in telecommunications, banking, and insurance—that are looking for a passive, easy-to-use voice authentication solution that can accurately verify user identity in seconds.