Google has given Android an OpenID upgrade to make handling digital credentials like virtual driving licences much easier and more secure. With native support for OpenID standards, Android apps and services can talk the same language when it comes to verifying who you are digitally. This update uses Android’s DigitalCredential API to bring in support for OpenID4VP (for showing your credentials) and OpenID4VCI (for getting new ones issued). It’s all part of Android’s push towards using open standards to ensure you’re not locked into one company’s way of doing things for your digital identity. The most obvious use people are talking about is digital identity documents like driving licences, passports, or national ID cards. But the potential goes way further. Google expects developers to get creative, using this tech for all sorts of things you might need to prove digitally. We’re talking education certificates, insurance details, gym memberships, event tickets, work permits – you name it. And it’s not just about official ‘wallet’ apps like Google Wallet or Samsung Wallet holding these credentials. Any app can potentially become a “credential holder.” Once you’ve picked, say, your digital driving licence, Android securely passes the request over to the wallet app that holds that specific licence. That app finishes the process, showing the credential to the verifier. This method also gives the wallet app a chance to “perform any additional due-diligence steps it needs to perform prior to releasing the credential to the verifier,” adding an extra layer of checks if needed. Receiving and storing new digital credentials is also getting standardised using the OpenID4VCI protocol. When someone needs to issue you a digital credential they can use this standard. To make sure Android knows what’s where when it’s time to show a credential, wallet apps need to tell the Credential Manager a bit about the credentials they hold. This info helps Android quickly find the right options for you when a request comes in.
The OpenID Foundation to demo a secure, privacy-preserving identity that supports cross-platform credential exchange, privacy-first architecture, and enterprise-grade securitycommunity to demo digital ID interoperability, DIF Labs taking proposals | Biometric Update
The OpenID Foundation is bringing together governments, standards bodies, technology vendors, end-user organizations and technical experts for a demonstration that “proves” a secure, privacy-preserving identity is “ready for prime time.” OpenID believes the single biggest barrier to seamless user experiences is interoperability, but in its upcoming showcase three specifications – the OpenID Verifiable Presentation (OID4VP), the High Assurance Interoperability Protocol (HAIP) and the Digital Credentials API (DC API) – are unified. “It’s a real-world demonstration of cross-platform credential exchange, privacy-first architecture, and enterprise-grade security,” the foundation said. Groups participating in the demo will include the NIST NCCoE, Mattr, Spruce, Animo, and 1Password among 10 teams developing digital wallets and verification solutions. They will work with credentials based on the ISO mDoc format widely utilized by mobile driver’s licenses, and Selective Disclosure JWTs (SD-JWTs). NIST NCCoE’s mDL architecture for opening a bank account, which uses the OID4VP, DC API and HAIP specifications, will also be demonstrated during the event.
Capgemini unveils perpetual ‘Know-Your-Customer’ real-time continuous compliance sandbox automatically alerting firms to changes in a customer’s circumstances that could affect their risk profile, enabling them to re-assess their risk exposure to the customer
Capgemini has launched a technology sandbox to help financial institutions transition from static Know-Your-Customer (KYC) processes to perpetual KYC (pKYC) and event-based reviews. The sandbox, a first of its kind, provides a secure environment for firms to test and demonstrate the effectiveness of pKYC processes. It allows firms to automatically alert firms to changes in a customer’s circumstances that could affect their risk profile, enabling them to re-assess their risk exposure to the customer. Capgemini’s sandbox model is flexible and modular, allowing organizations to implement it across their cloud platforms and technologies. The sandbox is designed to meet regulatory requirements and demonstrate how financial institutions are mitigating inherent risk exposure more effectively. It also demonstrates the industry’s ability to demonstrate excellence in achieving real-time KYC requirements. Key benefits of Capgemini’s new pKYC sandbox include: A safe testing environment: a secure environment where new KYC processes, policies, or technologies can be tested without risking real customer data leakage or compliance failures. Best-of-breed solutions: integration of key components from best-of-breed RegTech solutions and accelerators. Real-time visualization: ability to visualize pKYC in action to gauge benefits and showcase the framework to regulators. Quantifiable business impact: rapid end-to-end testing of the tech stack and processes leading to much faster feasibility of the pKYC operating model and creation of the associated business case. Operational readiness: identifies operational bottlenecks and optimizes workflows to enable full-scale deployment with confidence.
Capgemini unveils perpetual ‘Know-Your-Customer’ real-time continuous compliance sandbox automatically alerting firms to changes in a customer’s circumstances that could affect their risk profile, enabling them to re-assess their risk exposure to the customer
Capgemini has launched a technology sandbox to help financial institutions transition from static Know-Your-Customer (KYC) processes to perpetual KYC (pKYC) and event-based reviews. The sandbox, a first of its kind, provides a secure environment for firms to test and demonstrate the effectiveness of pKYC processes. It allows firms to automatically alert firms to changes in a customer’s circumstances that could affect their risk profile, enabling them to re-assess their risk exposure to the customer. Capgemini’s sandbox model is flexible and modular, allowing organizations to implement it across their cloud platforms and technologies. The sandbox is designed to meet regulatory requirements and demonstrate how financial institutions are mitigating inherent risk exposure more effectively. It also demonstrates the industry’s ability to demonstrate excellence in achieving real-time KYC requirements. Key benefits of Capgemini’s new pKYC sandbox include: A safe testing environment: a secure environment where new KYC processes, policies, or technologies can be tested without risking real customer data leakage or compliance failures. Best-of-breed solutions: integration of key components from best-of-breed RegTech solutions and accelerators. Real-time visualization: ability to visualize pKYC in action to gauge benefits and showcase the framework to regulators. Quantifiable business impact: rapid end-to-end testing of the tech stack and processes leading to much faster feasibility of the pKYC operating model and creation of the associated business case. Operational readiness: identifies operational bottlenecks and optimizes workflows to enable full-scale deployment with confidence.
Google Wallet deploys Zero-Knowledge Proof age verification technology uses blockchain to process the condition (age) in encrypted form, generating a proof that can be verified by an external service through public keys
Google has introduced Zero-Knowledge Proof (ZKP) technology to its Google Wallet service, allowing users to verify their age without sharing personal information. This cryptographic technology is a significant turning point for online privacy protection, as it eliminates the risk of privacy violations and identity theft. The system uses blockchain technology to process the condition (age) in encrypted form, generating a proof that can be verified by an external service through public keys. Unlike traditional methods, the ZKP system maintains total control over users’ information. Bumble, a popular dating app, will use digital IDs issued through Google Wallet to verify their age, while the confirmation will be managed through the ZKP system. This will improve the user experience and increase trust in the platform. The adoption of ZKP technology by Google could mark a decisive turning point, attracting attention from developers, companies, and investors in the decentralized privacy sector. The future of age verification and digital identity could be marked by a greater balance between security and privacy. If successful, the adoption of systems based on ZKP could lead to a safer and more respectful internet for individuals.
Google Wallet deploys Zero-Knowledge Proof age verification technology uses blockchain to process the condition (age) in encrypted form, generating a proof that can be verified by an external service through public keys
Google has introduced Zero-Knowledge Proof (ZKP) technology to its Google Wallet service, allowing users to verify their age without sharing personal information. This cryptographic technology is a significant turning point for online privacy protection, as it eliminates the risk of privacy violations and identity theft. The system uses blockchain technology to process the condition (age) in encrypted form, generating a proof that can be verified by an external service through public keys. Unlike traditional methods, the ZKP system maintains total control over users’ information. Bumble, a popular dating app, will use digital IDs issued through Google Wallet to verify their age, while the confirmation will be managed through the ZKP system. This will improve the user experience and increase trust in the platform. The adoption of ZKP technology by Google could mark a decisive turning point, attracting attention from developers, companies, and investors in the decentralized privacy sector. The future of age verification and digital identity could be marked by a greater balance between security and privacy. If successful, the adoption of systems based on ZKP could lead to a safer and more respectful internet for individuals.
Agree.com’s AI-powered e-signature platform is different from competitors because it includes invoicing generation and payment processing
Agree.com says its AI-powered e-signature platform is different from competitors because it includes invoicing and payment processing. That’s why the company might have a shot at tackling the industry Goliath, Docusign. Because the startup makes its money from transaction fees for any money movement facilitated by its platform, Agree.com has made e-signatures free to all users. Agree.com uses AI on top of optimal character recognition (OCR) software so that it can auto-detect and label all of a contract’s input fields and signature blocks. Its technology can also identify and extract “any and all” payment terms to dynamically generate invoices. Because of its multitasking approach, Agree.com can potentially replace traditional e-signature software and invoicing and accounts receivable tools such as Bill.com. Agree extracts every character, indentation, semicolon, and hyphen to not only understand the type of contract being signed, but make it fully editable and collaborative with commenting, redlining, and version control. Agree’s “business model is truly unique: free software, monetized through invoicing and payments.”
Pledge Software’s API allows instant verification of nearly 2 million nonprofit organizations in the US by EIN- Employee Identification Number
Pledge Software has launched the Nonprofit Check Plus API, a new tool that allows developers, fintech companies, grant platforms, marketplaces, and charitable foundations to instantly verify nearly 2 million nonprofit organizations in the US using real-time data from federal sources. The API aggregates data from the IRS Business Master File, IRS Pub 78, OFAC, and the IRS Auto-Revocation List, ensuring seamless and accurate nonprofit validation by Employer Identification Number (EIN). Key Features: Real-Time EIN-Based Lookup: Validate nonprofits instantly using a single API call. Multi-Source Compliance Checks: Cross-reference against IRS BMF, Pub 78, AROE, and OFAC lists. Structured JSON Output: Developer-friendly format for easy integration. Free & Paid Tiers: Flexible pricing for small developers, large enterprises, and everything in between.
Plaid’s ID verification tech can now counter deepfakes, synthetic media and facial duplicates; and includes age estimation to flag impersonation risks
Plaid has updated its identity verification (IDV) product to counter the threat posed by fraudsters who use Gen AI. New features added to the product include deepfake and synthetic media detection, facial duplicate detection to catch repeat fraud attempts, age estimation to flag impersonation risks, and risk-based flows that adapt in real time to streamline trusted users and escalate high-risk ones. The upgrades are now available to all Plaid IDV customers, with no extra integration required. Powered by our Trust Index, these enhancements help you streamline verification for trusted users while tightening controls for higher-risk cases: Risk-Based Escalations; Selfie Re-Authentication; Trust Index Risk Check. By combining rich data sources and high-fidelity signals with the scale of our network, Plaid gives companies a faster, more secure way to verify identity and stop fraud at the front door. These enhancements are available to all Plaid Identity Verification (IDV) customers out of the box, with no additional integration required.
ServiceLink solution allows lenders to schedule 100% of their closings ‘in-platform’ through built-in automated remote online notarization to determine borrower eligibility and in-branch scheduling option
ServiceLink has enhanced its EXOS Close technology including new options for online and in-branch closings in addition to an instant in-platform determination of remote closing eligibility, assessing state and county acceptance requirements and, with lender approval, automatically giving borrowers who are eligible the immediate option to schedule their closing online. The addition of this unique in-branch scheduling selection and built-in automated remote online notarization (RON) eligibility determination allows lenders to schedule 100% of their closings through EXOS. The inclusion of an in-branch scheduling option is pioneering technology in the industry – no other provider but ServiceLink offers the ability for a lender to schedule in-branch closings. This new option will greatly aid with home equity and refinance transactions, increasing efficiency and transparency in the process. Access to the RON eligibility determination also will empower lenders to easily adopt and scale eSignings and extend the option to their borrowers to self-schedule their own RON closing event. No other solution provides real time calendaring functionality, with direct access to the availability of the most qualified notaries in the country, that empowers borrowers to schedule their own closing appointments for the exact date and time and now, location, of their choosing.