What is NIST IAL2 Identity Verification?

by
Nametag Team
Nametag console showing a successful verification result

Enable Self-Service Account Recovery

Nametag sends MFA and password resets to self-service while protecting your helpdesk against social engineering.

As multiple identity verification solutions emerge claiming to have the resources you need to secure your enterprise’s employees and customers, how can you get a holistic comparison of each solution’s capabilities and commitment to providing effective and modern identity verification? 

In order to solve this problem, healthcare firms and federal agencies are turning to the National Institute of Standards and Technology (NIST), which offers Digital Identity Guidelines (titled NIST 800-63-3) and Identity Assurance Level (IAL) standards to give customers and compliance officials alike the assurance they need that patient identities are secure. At Nametag, we’re dedicated to helping our clients meet the latest in identity verification standards and ensuring privacy and security for your organization.

What Does NIST IAL2 Require?

As the United States government’s highest level of certification for client-facing identity proofing, whether it’s remote or in-person, organizations at Identity Assurance Level 2 require users to provide evidence that they are who they claim to be in order to access sensitive information, such as medical records or a Social Security number. Specifically, NIST requires that a client offer one of the following combinations of evidence:

IAL2 Requirements: Option 1 - One piece of "superior" or "strong" evidence if the credential service provider directly validates confirmation from the body that issued the evidence. Option 2 - Two "strong" pieces of proof of identity. Option 3 - One "strong" piece of evidence, alongside two pieces of "fair evidence".

Note: although biometric verification is not required, a face scan or fingerprints can be used as evidence to confirm a patient’s identity. 

How Nametag Can Help You Meet the Latest Security Standards

Nametag gives healthcare providers the fastest, most secure way to meet NIST’s digital identity verification standards. With our frictionless and reusable solutions, we make it easier for your patients to register, revisit, or contact you.

Our Sign in with ID solution ties patient accounts and data to their government-issued ID and real-time facial identification by taking a selfie. The photo ID and the selfie offer a strong physical comparison to the patient requesting access, AND a biometric comparison using the real-time identity authentication. By combining these actionable pieces of evidence that can be used to verify a patient’s identity and help you meet the IAL2 standards, and deter fraudsters or identity thieves looking to steal personal information or patient data. 

We designed our lightweight solutions to use the latest identity security measures and prioritize user privacy, only sharing the information that you need for verification and using a device’s native security features for authentication, instead of another centralized service.

Conclusion

At Nametag, we’re dedicated to clarifying any and all emerging confusion in the digital identity landscape, and we hope this quick walkthrough helps you understand the latest identity assurance standards laid out by NIST. Our Multi-Factor Identity technology is uniquely positioned to help you meet IAL2 standards, with capabilities designed to fulfill the promise of ID-based biometric verification without compromising security or relying on legacy technology.

As NIST implements these new identity verification standards, healthcare providers using Nametag can comply with IAL2 standards the minute they become enforceable by using a solution that works out-of-the-box. Are you interested in proactively securing your patient-facing accounts and data?

To learn more, you can request a demo on our website here

Secure your helpdesk against social engineering and impersonators.
Decline
Accept All Cookies