Make Multi-Factor Authentication Easier

Adaptive Multi-Factor Authentication (MFA) capabilities match authentication to risk. Protect your customers from account takeover and your business from fraud and loss. Integrate ID.me’s NIST 800-63-3 Authenticator Assurance Level 2 capabilities and jump to the cutting edge of Multi-Factor Authentication features to protect your users.

IDme sign in multi-factor authentication text

193 billion credential stuffing attacks in 2020

0B
Credential stuffing attacks in 2020
0B
breached passwords
0%
of breached passwords still in use
0%
of consumers repeat passwords across sites

Robust Multi-Factor Authentication Capabilities

From SMS One Time Passcodes (OTPs) to native apps to FIDO WebAuthn, ID.me enables rapid deployment of a full suite of authenticators certified to NIST SP 800-63 Authenticator Assurance Levels 2. ID.me shores up weaker authenticator options like SMS OTP with delivery and device controls that mitigate vulnerabilities tied to SS7 exploits and message forwarding. ID.me also supports phishing-resistant MFA authenticators like FIDO Web Authn and tokens.

Instructions for using a security key with IDme
Phone with loading screen and one time password entry bar

Fortify SMS OTP to Stop SS7 Attacks

NIST considered deprecating1 SMS OTP due to concerns regarding en masse intercepts and authenticators associated with VOIP numbers. ID.me addresses these weaknesses by using short-links to confirm phone number possession for MFA enrollment tied to identity proofing flows, IP fraud and risk checks, device fingerprinting, and machine learning models.

Networked Fraud Detection

It takes a network of good actors to defeat a network of bad actors. Device fingerprinting, fraudulent IP detection, and machine learning enable relationship views between unique devices, IPs, and associated accounts and identities. Benefit from ID.me’s state-of-the-art capabilities and ability to detect anomalous login behavior across hundreds of sites.

Businessman using mobile phone with security key set-up box

MFA to Satisfy Regulatory Requirements