Veza Inc., a startup that helps enterprises regulate employee access to business applications, has raised $108 million from investors to enhance its technology. It provides a platform that can automatically scan a company’s applications to determine which user has access to what resources. Veza visualizes this information in a graph that helps administrators spot misconfigured access permissions. Using Veza, administrators could find accounts that have permission to change database settings but don’t belong to cybersecurity staff. The platform includes a search bar that makes it possible to browse user accounts with natural language prompts. In a large organization, access permissions are regularly added and removed. Administrators can configure Veza to generate an alert if an account receives access to a system in breach of internal rules. The platform likewise spots accounts that have correct access permissions, but aren’t actively used and therefore represent an unnecessary cybersecurity risk. Companies create accounts for not only employees but also applications. A revenue forecasting tool, for example, might require an account in a sales database to access the transaction logs it holds. Administrators can use Veza to find such accounts in the corporate network and remove them when they’re no longer needed.
New open-source, interoperability protocol LOKA assigns agents a unique and verifiable identity enabling them to communicate with other agents and operate autonomously across different systems
A group of researchers from Carnegie Mellon University proposed a new interoperability protocol governing autonomous AI agents’ identity, accountability and ethics. Layered Orchestration for Knowledgeful Agents, or LOKA, could join other proposed standards like Google’s Agent2Agent (A2A) and Model Context Protocol (MCP) from Anthropic. The open-source LOKA, which would enable agents to prove their identity, “exchange semantically rich, ethically annotated messages,” add accountability, and establish ethical governance throughout the agent’s decision-making process. LOKA builds on what the researchers refer to as a Universal Agent Identity Layer, a framework that assigns agents a unique and verifiable identity. The researchers said LOKA stands out because it establishes crucial information for agents to communicate with other agents and operate autonomously across different systems. LOKA could be helpful for enterprises to ensure the safety of agents they deploy in the world and provide a traceable way to understand how the agent made decisions. A fear many enterprises have is that an agent will tap into another system or access private data and make a mistake. LOKA will have to compete with other agentic protocols and standards that are now emerging. Protocols like MCP and A2A have found a large audience, not just because of the technical solutions they provide, but because these projects are backed by organizations people know. Anthropic started MCP, while Google backs A2A, and both protocols have gathered many companies open to use — and improve — these standards.
Checkout.com’s IDV solution uses AI-based facial matching and liveness detection to verify users against their onboarding data and detect spoofing attempts like deepfakes or video injection at any point in UX journey
Checkout.com announced the launch of face authentication, an AI-powered extension to its Identity Verification (IDV) solution. The new feature enables businesses to securely verify and re-authenticate returning users in seconds using live video and facial matching, helping to remove friction from critical user flows such as password recovery, employee onboarding, and secure platform access. IDV now uses AI-based facial matching and liveness detection to verify users against their onboarding data, while detecting spoofing attempts like deepfakes, masks, or video injection. The feature can be triggered at any point in the user journey, and is fully automated, removing the need for passwords, one-time codes, or manual review. The product supports a broad set of industries, including but not limited to government, healthcare, financial services, e-signatures, food delivery, loyalty programs, and airlines. “Checkout.com’s biometric solution sets a new benchmark in identity verification, combining greater speed and security with a firm commitment to ethical standards,” comments Milan Jani, VP of Product at Checkout.com. “Built to meet FIDO Alliance certification requirements, the product is already achieving consistent algorithm performance, confidently offering businesses and users alike inclusive and secure experiences.” Face authentication, which is available through an all-in-one verification API, has already helped customers achieve up to an 8-point increase in returning-user conversion rates.
Socure launches advanced pre-fill solution achieving a 91% match rate—far surpassing the industry average of 66% achieved with device intelligence, ID Graph Intelligence, and multiple layers of authentication directly from the carriers
Socure, has launched Socure’s Advanced Pre-Fill, a groundbreaking solution that redefines the customer onboarding experience, leveraging RiskOS™. Socure’s Advanced Pre-Fill dramatically streamlines onboarding by pre-populating application forms with the highest-verified identity information available—delivering speed, security, and scalability like never before. Socure’s Advanced Pre-Fill eliminates that friction by requiring minimal input from users, all while achieving a 91% match rate—far surpassing the industry average of 66%. This performance leap translates into higher conversion rates, faster time to fund, and reduced customer drop-off. Unlike legacy systems that rely heavily on limiting phone or credit header data, Socure’s solution taps into a vast array of authoritative signals—phone and carrier data, device information, graph intelligence, multi-bureau, tax, public records and more—to construct a rich, multi-dimensional view of identity. Socure’s Advanced Pre-Fill is available via client-side and server-side SDKs and APIs, making it easy to integrate into any digital application experience. Socure’s Advanced Pre-Fill accelerates customer onboarding by implementing form fill automation with authenticated data. Device Intelligence, ID Graph Intelligence, and multiple layers of authentication directly from the carriers not only ensures the best possible population coverage and entity resolution, but additionally plays a role in enabling instant fraud decisions. Socure Advanced Pre-Fill delivers measurable business impact through: Enhanced User Experience, Operational Efficiency, Improved Security.
World partners with Tinder, Visa to bring its ID-verifying eyeball-scanning Orb devices to more places
World, the biometric ID company best known for its eyeball-scanning Orb devices, announced several partnerships aimed at driving sign-ups and demonstrating the applications of its tech. World is partnering with Match Group, the dating app conglomerate, to verify the identities of Tinder users in Japan using World’s identity verification system. Additionally, World has established separate collaborations with both the prediction market startup Kalshi and the decentralized lending platform Morpho; these partnerships enable customers to sign in to these services using their IDs already registered with World. And World plans to team up with Visa to launch The World Card, a card that lets users spend digital assets anywhere Visa is accepted. With these new partnerships, World is going after a broader audience — one that previously might not have considered having their eyeballs scanned to verify their “humanness.” The World Card is perhaps the most interesting of the new projects. Expected to become available in the U.S. later this year, it’ll connect to World’s World App and allow users to transact with cryptocurrencies. The card will automatically exchange crypto to fiat when needed, and potentially offer certain rewards for specific “AI subscriptions and services.” Also announced a collaboration with Stripe to allow users to pay with World on Stripe-enabled websites and apps.