iProov Liveness Vendor Assessment Tool

Thank you for completing the iProov Liveness Vendor Assessment Tool. An iProov representative will reach out to you shortly with your full report.

If you would like to submit another entry, Click Here

Liveness Vendor Assessment Tool

Complete this assessment tool to gain valuable insights into your liveness vendor's performance, covering critical areas such as attack detection, security updates, user experience, accessibility, customer and partner support, and governance.

Get Started

Security and Attack Detection

What attack detection testing has your liveness solution been accredited to?

More Info

Question 1 of 4

Select One

iBeta Level 1

Above And iBeta Level 2

Above And Independent Penetration Testing

Above And FIDO Alliance Face Verification Certification

Above And Government Testing

Back Next

Security and Attack Detection

How often does your vendor launch defense updates?

More Info

Question 2 of 4

Select One

No defense updates

Periodically (e.g., once quarterly)

Reactive response (e.g., after a successful attack vector)

Continuous intelligence-led updates (based on continuous insight into in-production traffic)

Managed detection and response (ongoing threat hunting and rapid response to suspicious behaviour)

Back Next

Security and Attack Detection

What attack types do you believe your biometric solution can defend against?

More Info

Question 3 of 4

Select One

None

Basic presentation attacks: paper masks, on-screen images

Advanced presentation attacks: on-screen deepfakes, silicone masks

Basic injection attacks: injected static images

Advanced injection attacks: Injected synthetic imagery (e.g. face swaps)

Back Next

Security and Attack Detection

What kind of liveness do you use?

More Info

Question 4 of 4

Select One

None, face matching only

Single-frame API

Multi-frame with non-unique challenge-response (same each time)

Multi-frame with no challenge-response

Multi-frame with unique challenge response (Changes each time)

Back Next

User Experience, Accessibility, and Performance

What are your user completion rates?

More Info

Question 1 of 4

Select One

Up to 70%

Up to 80%

Up to 90%

Up to 95%

Over 95%

Back Next

User Experience, Accessibility, and Performance

What are your average attempts to pass?

More Info

Question 2 of 4

Select One

Over 2 attempts

Over 1.75

Over 1.5

Over 1.25

1–1.25

Back Next

User Experience, Accessibility, and Performance

How does your vendor test for and mitigate bias?

More Info

Question 3 of 4

Select One

It doesn't

Vendor self-assessed

Independently tested over two years ago

Independently tested over a year ago

Continuous and independently audited testing of live traffic

Back Next

User Experience, Accessibility, and Performance

What accessibility accreditation is your liveness solution accredited to?

More Info

Question 4 of 4

Select One

None

Section 508

WCAG 2.1 AA & Section 508

WCAG 2.2 AA & Section 508

Back Next

Implementation, Maintenance, and Scalability

What level of effort do security updates require from your organization?

More Info

Question 1 of 4

Select One

High effort: Requires a major update of the internal platform

Considerable effort: Requires significant resources for testing, integration, and deployment

Medium effort: Manageable but still requires testing and configuration

Low effort: Updates are largely automated with negligible impact on the internal platform

No effort: Continuous updates are fully automated and require no effort from my organization

Back Next

Implementation, Maintenance, and Scalability

How easy is it to scale liveness checks to meet fluctuating traffic demands?

More Info

Question 2 of 4

Select One

Impossible: Requires major architectural changes. Downtime is expected

Difficult: Requires manual configuration, new hardware, and potentially complex deployments

Medium Difficulty: Requires some configuration changes

Easy: Requires minimal configuration changes

Very Easy: Fully automated and requires virtually no manual intervention

Back Next

Implementation, Maintenance, and Scalability

How easy is it to deploy the technology across multiple geographic locations?

More Info

Question 3 of 4

Select One

Very difficult: Essentially have to rearchitect the system for each new location

Difficult: Requires major configuration changes and some rearchitecting for each new location

Medium difficulty: Requires moderate configuration changes for each new location

Easy: Standardized deployment across most locations; Requires some configuration

Very easy: Fully automated deployment across all geographic locations with no intervention required

Back Next

Implementation, Maintenance, and Scalability

How quickly does your liveness vendor respond to important technical issues?

More Info

Question 4 of 4

Select One

Never

Within a fortnight

Within a week

Within a day

Within an hour

Back Next

Governance, Privacy, and Reputation

What steps have been taken to ensure user privacy?

More Info

Question 1 of 3

Select All That Apply

N/A: No biometric data goes to the vendor

None

Privacy firewall

Data encryption

Data minimization

Geographical protections: Information processing adheres to the rules of the geography (e.g., GDPR, CCPA, LGPD)

Back Next

Governance, Privacy, and Reputation

What cybersecurity standard is your vendor compliant with?

More Info

Question 2 of 3

Select All That Apply

None

Regional specific compliance (e.g. cyber essentials / DIATF / iRAP)

ISO 27001

SOC II Type 2

Back Next

Governance, Privacy, and Reputation

What publications has your liveness vendor appeared in?

More Info

Question 3 of 3

Select All That Apply

None

Acuity Market Intelligence

Gartner

Forrester

Liminal

KuppingerCole

Back Get Results

Your Results

Click the icons for more information and recommended actions

Security

Usability & Performance

Maintenance & Scalability

Governance & Privacy

Learn How to Evaluate
a Liveness Vendor

Attack Detection

Critical Risk

Your liveness detection technology is at critical risk of being exploited by attacks, posing a serious issue of identity fraud, security breaches, or regulatory noncompliance. The vulnerabilities are severe today and will become more pronounced as the threat landscape evolves and bad actors advance their attacks.

We deduce your liveness technology cannot protect against rudimentary attacks, such as presentation attacks.

Recommended Action

Your weak liveness defenses make your organization a primary target for bad actors. Overhaul your current liveness solution as quickly as possible. Prioritize vendors with proven attack detection capabilities and continuous security updates based on threat intelligence.

Back

Liveness Vendor Assessment Tool

Security and Attack Detection

Security and Attack Detection

Security and Attack Detection

Security and Attack Detection

User Experience, Accessibility, and Performance

User Experience, Accessibility, and Performance

User Experience, Accessibility, and Performance

User Experience, Accessibility, and Performance

Implementation, Maintenance, and Scalability

Implementation, Maintenance, and Scalability

Implementation, Maintenance, and Scalability

Implementation, Maintenance, and Scalability

Governance, Privacy, and Reputation

Governance, Privacy, and Reputation

Governance, Privacy, and Reputation

Your Results

Security

Usability & Performance

Maintenance & Scalability

Governance & Privacy

Attack Detection

Critical Risk

Recommended Action

Learn How To Evaluate A Liveness Vendor

Learn How To Evaluate
A Liveness Vendor