Precise, Simple User Authentication

Biometric Multifactor Login

Simple, Precise. 

GoVerifyID is the enterprise-ready application that leverages your existing Active Directory system to add 2FA/MFA with cloud-based, biometric authentication as an additional layer of access security.

Anywhere that Active Directory controls access, you can implement passwordless identification with biometric out-of-band  authentication.

Compatible with all major operating systems and mobile devices. Learn more about how GoVerifyID helps secure the Active Directory environment – both for on-premise and remote workers.

How It Works

Passwordless In Minutes

GoVerifyID takes minutes to set up, deployable across your enterprise in a day. 


Step 1: Request Access

Whatever device, system, or process users need to access, the first step is the request. 

This is initiated by providing a username. The request to authenticate is sent to the GoVerifyID server.

Step 2: Authenticate

Once access is requested, GoVerifyID prompts users to provide a biometric credential to authenticate. This could include face, voice, palm, or fingerprint. 

GoVerifyID uses 1:1 matching, and takes sampled biometric data to compare against originally enrolled biometric credentials. 

Step 3: Access Granted

Security is ensured when sampled biometric data matches the original credentials. 

Secure Remote Access Through COVID-19 and Beyond

The new remote workforce is a challenge all businesses are trying to overcome now.

The FBI has reported that cybercrime has spiked 400% since COVID-19 reached the US in January 2020.

Enterprise IT teams that are staffed and equipped for a primarily on-premise workforce are challenged to address the security needs of a now predominantly remote workforce.

ImageWare Multimodal Biometric Authentication leader and CTO, David Harding, meets with Cybersecurity Analyst & Author, Richard Stiennon.

Together they will deep dive on current threats surfacing during the work from home mandates, and the necessity of using identity to secure the network perimeter.

Defense-Grade Biometric Authentication

Technology built to satisfy the scale of government-grade projects. Now available for the Enterprise.

We’ve spent decades fine tuning our purpose-built biometric database (the Biometric Engine), to the point where it is the fastest biometric processing engine in the industry. In addition, we’ve built the engine to operate anonymously. No personally identifiable information is used to look up a biometric template.

GoVerifyID is the enterprise-ready application that leverages your existing Active Directory setup and adds an additional layer of access security with biometric authentication. Anywhere that Active Directory controls access, you can replace the username/password with a biometric authentication prompt.

Customize security by choosing which modalities authenticate your users.

For simple passwordless login, the users can choose the most convenient option from the enabled modalities. When a more secure authentication is needed, you can enforce use of two or more modalities to reach a higher level of security.

GoVerifyID currently offers four biometric modalities out of the box:

Facial Authentication: using a mobile phone or laptop webcam, users look at the camera similar to taking a selfie. Highest level of authentication, particularly when combined with the NIST compliant Biointellic Anti-Spoofing technology.

Voice Recognition: users speak a randomized phrase, typically using a mobile phone.

Fingerprint: use a dedicated fingerprint reader to compare in the cloud for maximum precision, or use on-device fingerprint for basic security needs.

Palm Scan: user holds their palm over their mobile phone camera to authenticate.

You can also set up GoVerifyID Credential Provider for passwordless workstation login. If your workstation has a webcam enabled, Credential Provider replaces the Windows password prompt with a facial authentication prompt.

One solution for your entire enterprise. 

We integrate seamlessly with most major Identity and Access Management (IAM) providers. This includes integration with Identity Governance and Administration (IGA), Single Sign-On (SSO), Enterprise Mobility Management (EMM), Network Access Security (NAS), Web Access Management (WAM), Password Management (PM), Virtual Private Networks (VPN) and other solutions.

GoVerifyID is designed to complement your organization’s existing security process and workflow. GoVerifyID can easily be integrated into your use case through either our standard SAML interface, OIDC connectors or our open REST APIs; providing biometrics where and when you need it.

Out of the Box integrations include: 

  • ForgeRock
  • Sailpoint
  • Avatier Password Station
  • ServiceNow
  • Aruba ClearPass
  • Fujitsu RunMyProcess
  • SAP

Upgrade cybersecurity while providing simple access.

Need to tighten up your identity verification to adopt a zero-trust model? The way to enable this level of secure access without impeding the efficiency of work is through convenient, frictionless authentication methods.

Any time you need to verify the identity of someone accessing key business systems or data, you can replace the windows credential prompt with a biometric authentication prompt using our biometric credential provider. Alternatively, leverage the benefits of device authentication with the security of biometrics using the GoVerifyID out of band authentication app for mobile devices.

For maximum security, require a facial authentication prompt, which uses the Biointellic anti-spoofing system for identity assurance. Biointellic is compliant with ISO/SEC 30107-3 PAD standards.

Defense-grade security begins with a purpose-built biometric database.

The two types of biometric matching most commonly referenced are 1:1 (one to one), or 1:n (one to many).

GoVerifyID uses 1:1 matching for fast, secure authentication. 1:1 matching means that the user requesting access identifies themselves to the system using their assigned username, such as email address. They then provide a biometric template as their “credential” for access. Our patented Biometric Engine takes that credential, and references the originally enrolled template assigned to the username to see if the two exceed the matching threshold set by the IT team.

1:n, or 1 to many, matching takes a provided biometric template and checks it against the entire biometric database to see if any of the templates in the database are a match. ImageWare’s Biometric Engine is capable of performing this action in less than 5 seconds, and it has been integrated into other ImageWare products where this function is most useful. If you’re interested in a custom implementation leveraging this capability, please contact us for details – [email protected].

The better user experiences begins at enrollment.

The authentication flow starts with enrollment. Your implementation determines your exact method of enrollment, but the most common method is to have your users install the GoVerifyID mobile app on their iPhone or Android devices. Once installed, they can follow the prompts to enroll the biometric modalities they are comfortable with, and the minimum required by your security policies.

Enrolled biometrics are run through the appropriate algorithm, generating a biometric template – a unique series of ones and zeros that represent each user. This template is stored in the cloud, and is what is used to authenticate the user. No PII is stored with the template – Active Directory acts as the record keeper, the same as it would if you used a username and password.

Instead, with GoVerifyID, access is gated with biometric authentication. Users can’t be compromised through phishing attempts, as access can only be granted when they authenticate through GoVerifyID.

Users can complete the enrollment process in as little as 10 minutes, and be ready to use their machines or business systems immediately after completing enrollment.

Authenticate your users no matter where they are.

When a user attempts to access a machine, system, or software which has permissions managed by Active Directory, they identify themselves to the system with their username – most commonly, their email address.

This request is sent to GoVerifyID’s servers, which prompt the user to submit a new biometric scan. This can be face, palm, voice, or fingerprint, depending on the security policies in place around what the user is trying to access. The user submits the biometric data, and GoVerifyID sends it to the edge of the cloud. There, the Biometric Engine runs the captured biometric data through the same algorithm used at enrollment. The engine tries to match the captured data to the enrolled template in the database. If the match is within the parameters defined by the security team, user is granted access. Without a match, they’re rejected.

For situations that require high levels of security, such as large transfers of money, high level admin access, or guarding patient data, multiple biometric modalities can be used to generate a fused score. This capability for biometric fusion is unique to GoVerifyID – as studied by NIST, the fused score from multiple modalities is exponentially more accurate than any single modality on its own.

Contact Sales