Many consumer banking apps have begun integrating similar identity verification third-party providers. They are very inaccurate.
Sometimes it works with the front camera on one smartphone but doesn’t with another (iPhone 17’s distortion), sometimes it recognizes your face on one day, but desperately fails to recognize you on another. I had to repeatedly record videos for it only to fail over and over again. Anything their system flags as suspicious, anything, will trigger the same video identification flow again, which effectively blocks your money in the account.
I’m closing my accounts with a couple of banks with these video id flows. Simply because it’s way too easy to lose access to my money in the account with them. If their QA is not good enough for this vital requirement, I don’t want to know how they treat other requirements. They simply outsourced the id verification to some third parties that are way too unreliable.
I can't speak to the accuracy, but I just integrated stripe's offering for our product (which involves banking). We were small enough for a while not to need it, but eventually the fraudsters find you.
If you don't take these measures, you will lose money to fraud. You may also lose your business because you aren't meeting your AML/anti-terror obligations. (I also just had to take my annual training course).
There are a bunch of mitigations, of which identity verification is just one, and all of them are lousy for our good customers. I wish the banking systems were better and we didn't need to do any of it.
When I researched a bank learning they want to use some third party never-herd-of identification service on me was the moment I knew I do not want to share any of my personal details and consumer habits with that so called bank. They do not care enough to pretend they keep all my data in-house.
I’ve got the feeling that it’s spreading and is soon to become the default.
Another banking app has failed to identify me a couple of times (I attribute it to iPhone 17’s front camera distortion) and fell back to the snail mail id code as a 2nd factor. It arrived only several business days later. Instead of just letting me use my own 2nd factor such as a TOTP device or a physical security key. But maybe there are some legal requirements for that flow, I’m out of the loop.
So there’s a whole range between passkey-is-enough on one end and outsourced video id or snail mail for 2nd factor on the other. The latter can of course be misused to siphon as much personal information as possible out of you, even linking and scraping your other banking accounts for consumer profiling - designed as a requisite part of the authentication/authorization flow.
Discover hit me with a 3rd party ID check (Socure) after being a customer of theirs for decades. They locked me out of my account, including access to savings, CDs, and credit card e-statements until I complied. And they did it without any warning.
Sometimes it works with the front camera on one smartphone but doesn’t with another (iPhone 17’s distortion), sometimes it recognizes your face on one day, but desperately fails to recognize you on another. I had to repeatedly record videos for it only to fail over and over again. Anything their system flags as suspicious, anything, will trigger the same video identification flow again, which effectively blocks your money in the account.
I’m closing my accounts with a couple of banks with these video id flows. Simply because it’s way too easy to lose access to my money in the account with them. If their QA is not good enough for this vital requirement, I don’t want to know how they treat other requirements. They simply outsourced the id verification to some third parties that are way too unreliable.