Secure Identity Validation
What is needed is the Clavister IAM/MFA Server that implements the Multi-Factor Authentication use-case. The agency can then choose to implement a simple 2-factor login by sending a password via SMS, or implement full identity validation by requiring the end user to install an application on their smart-phone that supports biometric authentication procedures as well. All that is needed is that the mobile phone number, or installed app, is connected with the user’s account once during a setup phase.
Thereafter the user authenticates themselves with their login name or identification number and receives a One Time Password or an approval request in their mobile app. In this way the end-user uses something they have; a mobile phone with unique number or app installation; with something they are; a finger-print or face-id; with something they know; their login name or personal number.
The service provider can be ensured that they are interacting with a specific individual and provide privacy sensitive services.