Supervised Remote Identity Proofing (SRIP).
The Only Remote Path to IAL3.
SRIP verifies a person's identity under the live supervision of a trained operator, on controlled station hardware. Defined in NIST SP 800-63A, it is the only remote method that reaches Identity Assurance Level 3 (IAL3). NextgenID patented the technology and holds the first Kantara IAL3 certification covering it.

Why SRIP Exists
Remote Proofing Is Only as Strong as Its Supervision
Unsupervised remote proofing asks a person to photograph a document and take a selfie. That model is losing to generative AI: deepfakes defeat liveness checks, and injection attacks feed synthetic video straight into the verification pipeline.
In-person proofing resists these attacks but does not scale. SRIP combines both: in-person fraud resistance with remote reach.
$27.3B
U.S. identity fraud losses in 2025, with 18 million victims. Source: Javelin 2026 Identity Fraud Study.
$40B
Projected U.S. fraud losses enabled by generative AI by 2027, up from $12.3B in 2023. Source: Deloitte Center for Financial Services.
1 in 5
Biometric fraud attempts now involve a deepfake, across more than 1 billion verification events analyzed. Source: Entrust 2026 Identity Fraud Report.
+58%
One-year surge in deepfaked selfie attacks on remote identity verification. Source: Entrust 2026 Identity Fraud Report.
If your mission requires IAL3, supervised proofing is not optional. Here is how it works.
How a SRIP Session Works
One session. One supervised chain of custody, from proofing through issuance.
From arrival to credential, every step happens on controlled hardware with a trained operator supervising live.
Arrival at a walk-in, on-site, or mobile identity station
Document authentication on integrated scanners
Face, iris, and fingerprint capture on certified sensors
Live operator supervision of the full session
Operator challenge of anomalies in real time
What NIST 800-63 Requires
A webcam and a checklist do not qualify.
NIST SP 800-63A sets specific requirements before a remote session counts as supervised. Meeting them takes purpose-built infrastructure, which is why most vendors stop at IAL2 and why supervised proofing is the dividing line in the market.
The requirements
Continuous video monitoring of the entire session
A live operator participating remotely
Integrated scanners and sensors for all evidence capture
Physical tamper detection on the station
Operators trained to detect and challenge fraud
Mandated or mission-driven, IAL3 enrollment deserves a supervised session
Who Uses SRIP
Built for Missions Where an Unverified Identity Is Unacceptable
Federal agencies use SRIP for PIV and PIV-I workforce credentialing. The Department of Health and Human Services uses NextgenID to streamline nationwide enrollment, and the PresenceID Network is deployed across USPS locations. Defense and national security programs rely on it where facility and system access demand IAL3. Regulated enterprises use it for remote-worker onboarding.
- Identity established once, referenced and reused across every subsequent workflow
- Every workflow event logged against the verified identity record, fully auditable
- Verified identity data flows directly into your downstream systems the moment the session closes
Whether the workflow is a federal benefits claim, an employment eligibility check, a bank account change, or a secure document signing, the identity behind it needs to be certain. NextgenID makes it certain.
Where SRIP Is Required
Real Workflows That Demand Supervised Proofing
These are not hypothetical scenarios. They are live workflows where an unverified identity becomes fraud, and where a supervised IAL3 session closes the door.
| Workflow | The Risk Without Verified Identity | NextgenID’s Role |
|---|---|---|
| PIV & PIV-I Credential Issuance | An impersonated employee receives a trusted federal credential, and every downstream system inherits the fraud | Supervised IAL3 proofing and same-session PIV and PIV-I credential issuance in the same session |
| Federal Workforce & Distributed Hiring | Remote hires proofed by selfie: deepfakes pass liveness checks and synthetic identities get onboarded | Supervised remote sessions at walk-in, on-site, or mobile stations near each employee |
| FedRAMP High Cloud Access | Unauthorized privileged users in federal cloud environments, where IAL3 is mandated | IAL3 enrollment and PIV-I credential issuance through the PresenceID™ Network |
| Defense & Cleared Facility Access | An unverified identity gains physical and logical access where national security is at stake | IAL3 multi-modal biometric enrollment before any badge or system credential is issued |
| Contractor & Gig Onboarding | Synthetic workers gain access to sensitive systems and data undetected | IAL3 proofing at onboarding: every worker verified before a single credential is issued |
| CJIS & Law Enforcement System Access | Unverified access to criminal justice information systems and data | Supervised IAL3 proofing that satisfies CJIS identity requirements with one credential |
| Nationwide Benefits & Citizen Enrollment | Fraudulent enrollment diverts benefits and services at population scale | The model HHS uses: supervised enrollment infrastructure deployed nationwide |
| High-Risk Account Changes & Re-Verification | Account takeover at password reset, payee change, or privilege escalation | Identity re-proofing at a PresenceID™ station before the change is authorized |
// Enrollment Options
Choose Your Enrollment Model
Same IAL3 assurance, different deployment options based on your operational needs.
PresenceID Network Enrollment
IAL3 identity proofing available to your enrollees — wherever they are.
No dedicated hardware. No central enrollment facility. Enrollees go to the nearest PresenceID™ network location and complete a supervised IAL3 session with a certified agent via secure connection. You get verified, audit-ready identity data without the capital investment or operational overhead of running your own enrollment infrastructure.
- Real-time certified agent supervision
- No hardware purchase required
- Nationwide network access, walk-in available
- Encrypted, audit-ready enrollment packages delivered to your CMS
Enrollee visits the nearest network location
Connects securely with a certified remote agent
Completes supervised biometric and document capture
Verified identity package delivered to your system for adjudication
Kantara IAL-3 Certified
Independently certified to the highest identity assurance level under NIST 800-63.
Compliance Is Not a Feature.
It Is the Foundation.
We are independently audited and certified. Our Kantara IAL-3 certification means you can rely on our identity proofing for the most demanding enterprise and regulatory applications.
See a SRIP Session End to End
Request a demo and watch supervised proofing from arrival to credential issuance.
// WHO WE SERVE
High-Assurance Identity for Every Environment
From federal agencies to regulated enterprises, wherever identity assurance is mission-critical, NextgenID delivers.
Federal & Government
Civilian agencies, PIV and PIV-I, federal workforce.
Defense & National Security
DoD, classified access, intelligence community, CJIS.
Regulated Industries
Financial services, healthcare, cloud/FedRAMP, KYC/AML — any industry with a compliance mandate.
Enterprise & Workforce
Commercial enterprises, remote teams, mass hiring, contractor/vendor onboarding.
Identity-Gated Workflows
Proof identity once, then gate any transaction, access decision, or service that requires it.
Deliver IAL3 Identity Proofing Through Your Own Platform.
NextgenID’s platform is available for licensing. Organizations with their own trained agents can integrate certified IAL3 identity proofing directly into their existing identity management infrastructure, using our platform, their operators, and their workflows.
