Biometric Authentication
Didit's Biometric Authentication solution provides a streamlined verification experience for returning users who have previously completed a successful verification. This workflow uses facial recognition to confirm identity without requiring document re-verification, creating a frictionless experience while maintaining high security standards.
Key Features
Fast Re-Verification
- No document scanning required
- Complete verification in seconds
- Reduces user friction and abandonment
Advanced Security
- Uses the same neural network architecture as Face Match 1:1
- Prevents account takeover attempts
- Includes liveness detection to prevent spoofing
Integration Flexibility
- Available as web-based
- Configurable matching thresholds
- Optional IP analysis for enhanced security
Cross-Session Identity Linking
- Links returning users to their previous verification data
- Maintains consistent user profiles
- Enables smooth re-verification experiences
How It Works
Previous Verification Requirement
For biometric authentication to work, the following prerequisites must be met:
- User must have completed at least one previous successful verification with liveness check
- Same
vendor_dataidentifier must be used across all sessions - Previous session must have been approved (status = "Approved")
Without a previous successful verification that included liveness detection, biometric authentication will fail with an NO_PREVIOUS_LIVENESS error.
Session Creation
When you create a biometric authentication session:
- You must provide the same
vendor_dataused in previous sessions - The system retrieves the reference photo from the user's most recent approved liveness check
- The biometric authentication workflow is initialized
// Example session creation request
{
"workflow_id": "biometric_authentication",
"vendor_data": "user-123", // Must match previous sessions
"callback": "https://example.com/verification/callback",
"metadata": {
"login_attempt": "2"
}
}Live Photo Capture
During the authentication process:
- User takes a new selfie (with active liveness detection)
- System evaluates image quality
- Poor quality images are rejected with guidance for improvement
- User can retry if needed
Biometric Comparison
The system performs a sophisticated face matching process:
- Compares new selfie with stored reference photo
- Analyzes facial landmarks and features
- Generates similarity score (0-100%)
- Applies configured threshold for decision
Result Processing
Based on the comparison results:
- Scores above threshold → Authentication approved
- Scores below threshold → Authentication declined
- Results are available via API, dashboard, and webhooks
- System stores session details for future reference
Common Errors
| Error Code | Description | Solution |
|---|---|---|
| No previous verified session found for the provided vendor_data. | Ensure the user has completed a successful verification with liveness check before attempting biometric authentication. Use the same vendor_data identifier. |
| The vendor_data parameter is required but missing. | Always provide the vendor_data parameter when creating a biometric authentication session. |
Best Practices
Security Considerations
- Set appropriate thresholds: Balance security vs. user experience based on your risk tolerance
- Combine with IP analysis: Add IP analysis to detect location anomalies
- Implement session limits: Consider limiting failed authentication attempts
- Offer fallback options: Provide alternative verification methods after multiple failures
Technical Implementation
- Consistent vendor_data: Use a persistent identifier across all user sessions
- Webhook integration: Configure webhooks for real-time status updates
- Error handling: Implement graceful fallbacks for all error scenarios
- Session expiry: Set appropriate timeouts for authentication attempts
Biometric authentication works best as part of a holistic identity strategy. Consider integrating it with other verification methods for a layered security approach.
Integration Example
Here's how to integrate biometric authentication into your application:
By implementing biometric authentication, you can provide a seamless verification experience for returning users while maintaining high security standards.