INE check¶
Info
- This is an opt-in functionality and is priced separately. If your organization is interested in using it, please contact your sales representative.
- This feature is exclusively available for organizations based in Mexico.
As part of the CNVB ("Comisión Nacional Bancaria y de Valores") requirements for digital onboarding in the account opening process for financial institutions, these institutions must use the INE ("Instituto Nacional Electoral") as a means of biometric check for their new customers. Veridas has partnered with INE to offer a biometric comparison based on the user's face using our Face Authentication product
INE demands that the biometric comparison process be carried out at their facilities, so our Face Authentication API (das-Face) is installed there. Additionally, INE requires that the biometrics provider be assessed by NIST in their Face Recognition Technology Evaluation (FRTE) 1:1 challenge. The biometric engine used by Veridas at INE has been assessed by NIST FRTE 1:1, and the report is available here: NIST FRTE 1:1 Verification report
The following diagram shows the complete flow:
- Initially, the citizen goes through the onboarding process with the financial institution. As a result of this process, the financial institution receives the credential data and a selfie photo of the citizen.
- The financial institution calls Veridas’ Face Authentication API (das-Face), where it sends the selfie image obtained in the onboarding process (Step 1). This service can be executed either in the cloud or on-premises.
- The Veridas engine calculates the biometric vector from the selfie image and returns it to the financial institution. This biometric vector is irreversible, so a facial image cannot be obtained from it. Therefore, it is a private representation of the person's face.
-
The financial institution calls the INE API to consume the facial verification service. In this call, it is necessary to send three pieces of data:
- The biometric vector extracted in the previous step.
- The citizen's identifier. This identifier can be one of the following:
- Primary key: Credential Identification Code (CIC)
- Composite key: OCR Number + Voter ID + Issue Number.
- The identifier of the biometric provider that will execute the biometric comparison process at the INE must be sent. In this case, the identifier assigned to Veridas. 5. When this information reaches the INE, the INE retrieves the citizen's photo stored in its database based on the CIC. 6. The INE sends the photo extracted in step (5) along with the biometric vector received in step (4) to the Veridas’ biometric engine (das-Face) installed on its servers. 7. The Veridas’ Face Authentication biometric engine installed at the INE performs the biometric comparison between the photo and the vector, obtaining a similarity score. This score is finally returned by the INE to the financial institution. Once the biometric score is obtained, the financial institution can decide whether to accept the client's registration based on the established acceptance threshold.
CNBV establishes the need to use a threshold equal to or greater than 90%. The 90% threshold allows operating with a false positive rate of 0.003% and a false negative rate of 2.01%.
Our Face Biometry Performance Report is in the following table
Please read carefully
- Customers using this service must be from a Mexican institution and must offer a final service to the citizens.
- Financial institutions that wish to use INE's facial biometric service must sign a collaboration agreement with INE.
- To be able to use this service, customers need Veridas’ Face Authentication API (das-Face), either on-premise or a cloud account, for vector generation. If customers already have one for authentication purposes, it may not work because calls to the INE must carry facial vectors encrypted with a specific key.