PingOne

Verify policies

After creating a PingOne environment with the PingOne Verify service, a default policy is created. You can use this default policy as is, modify its settings, or create additional custom policies to fit your needs.

By implementing these policies, you establish the backbone of your identity infrastructure, which addresses three critical areas:

  • Trust establishment: PingOne Verify policies ensure that the person behind the screen is who they claim to be using a government ID and biometrics verification.

  • Regulatory compliance: Configured PingOne Verify policies help meet Know Your Customer (KYC) and Anti-Money Laundering (AML) requirements.

  • Fraud prevention: By requiring Liveness Detection in your PingOne Verify policies, you prevent presentation attacks where fraudsters use photos or masks to bypass facial recognition.

Finding the right balance within your policy configuration is crucial for success. An overly lenient policy can open the door to identity spoofing and account takeovers, while a policy that’s too rigid can lead to user frustration and abandonment.

Learn more about setting up and maintaining your PingOne Verify policies in the following topics: