Contents
Incode Technologies, Inc., a company specializing in identity security and fraud prevention, has obtained iBeta Level 3 validation under ISO/IEC 30107-3 for both iOS and Android.
With a 0% error rate in Presentation Attack Detection (PAD) tests, the company is the first to obtain the most rigorous international public validation that evaluates a system’s ability to detect and block spoofing attempts using photographs, videos, 3D masks, or other presentation attacks.
Subscribe to Mundo Ejecutivo to read exclusive content and receive benefits
Phishing blocks
The results were compelling: a 0% attack presentation classification error rate (APCER) —no spoofing attempts were accepted—and a 0% bona fide presentation classification error rate (BPCER)—no legitimate users were rejected.
Ricardo Amper, Founder and CEO of Incode, noted that receiving this certification demonstrates that the company meets the highest standards for identity verification without compromising a fast and simple registration experience, even in regulated and high-risk environments.
“We are the first company to independently achieve iBeta Level 3 compliance on iOS and Android, with zero errors and a seamless user experience.”
Download the February issue of Mundo Ejecutivo magazine, featuring Gonzalo Araújo on the cover
Life-signal detection technology
Facial liveness detection technology is used in digital onboarding and authentication to confirm that a real person is present when a selfie is taken, rather than a printed photo, video playback, masks, or other impersonation attempts. It protects against account takeover, synthetic identity fraud, and impersonation.
This level of security is even more critical in high-volume environments, where identity decisions impact conversion rates, fraud losses, and customer trust across millions of users.
It is worth noting that Incode powers trusted experiences for 8 of the top 10 banks in the United States; 8 of the top 9 telecommunications companies; the top 3 global neobanks; and 4 of the world’s 5 largest marketplaces. To date, Incode has processed more than 7.1 billion trust verifications.
High safety standards
In 2019, Incode launched a passive liveness detection model designedto detect common 2D presentation attacks, including attacks using printed photos and video playback. That launch made the company the first vendor to achieve iBeta Level 1 certification using a passive liveness detection approach.
Incode expanded its defenses in 2022 to address advanced attacks involving 3D masks, while also strengthening its 2D detection capabilities. These improvements enabled it to pass the iBeta PAD Level 2 tests in early 2023.
By 2026, it had achieved Level 3 on the iBeta PAD for both Android and iOS with a perfect score.
Independent validation at the highest PAD level
In this context, Evan Call, Business Development Manager and Director of Biometric Sales and Marketing at iBeta Quality Assurance, explained that iBeta Level 3 is designed to simulate attackers with extensive resources who use hyper-realistic masks and specialized manufacturing techniques to test modern biometric systems.
“Incode’s results show compliance with Level 3 on both iOS and Android, with 0% APCER and BPCER error rates during evaluation.”
APCER (Attack Presentation Classification Error Rate) assesses whether spoofing attempts are accepted, while BPCER (Bona Fide Presentation Classification Error Rate) measures whether legitimate users are rejected. Incode reported 0% for both metrics: no presentation attacks were accepted and no legitimate users were rejected during the evaluation.
Incode verification is completed with a single selfie, without any prompts (such as turning your head or smiling), which helps reduce friction while ensuring robust resistance to sophisticated phishing attacks.
Why is this important?
Digital onboarding has become the primary gateway to financial services, marketplaces, and government platforms, making identity verification a critical control point for both security and growth.
Organizations are facing increasing pressure to reduce fraud-related losses and the negative impact on the user experience and revenue.
As attackers become more sophisticated, it becomes more difficult to evaluate intrusion detection vendors under the most demanding real-world conditions. Independent evaluations at the highest PAD level help identify the solutions that truly work.
Follow us on Google News to stay informed
