Why Keyless Was Chosen as an IDC Innovator

26 August 2025

Keyless has been named an IDC Innovator in the 2025 IDC Innovators, a Deepfake Detection report that identifies vendors developing innovative technologies to help enterprises detect and mitigate the risks of deepfakes.
The report shows that deepfakes, once thought of as a minor threat, are now a serious and fast-growing problem for businesses, especially in financial services. As generative AI makes them easier to create, authentication systems need to get smarter at spotting and blocking these advanced spoofing attempts.
Here are the key takeaways from the report. 

Deepfakes Are Breaking Traditional Biometric Systems

Traditional biometric systems, especially those relying on FaceID or fingerprint sensors built into smartphones, weren’t designed to detect synthetic media attacks. They can be tricked by high-quality deepfake videos or screen replays, especially if a fraudster also has access to the user’s device.
IDC highlights that biometric systems must now account for two things: is this the real user, and is this interaction happening in real time.
This is where IDC highlights Keyless’ technology - a solution that includes multiple layers of deepfake detection that work together to block spoofing attempts before they succeed. 
These include passive liveness detection, behavioral biometric signals, and most importantly, device binding - ensuring that even the most convincing deepfake can’t be used without the original device.
Authentication only succeeds if both the face and the original device are present. If either is missing, access is denied.

Strong Deepfake Protection Requires More Than Just Liveness Checks

Many biometric vendors claim to offer liveness detection, but IDC’s report makes it clear that surface-level defenses are no longer enough. What’s needed are multimodal signals and deep visibility into the authenticity of both the user and their device.
Keyless’ multilayered approach includes:
  • Passive liveness detection to spot visual artifacts and motion inconsistencies.
  • Device and behavioral analysis to detect abnormal usage patterns.
  • Injection attack detection to prevent synthetic content from being fed directly into the authentication process.
  • Secure device verification to ensure authentication attempts originate from the device linked during enrollment.
These signals are processed in real time using machine learning, allowing our system to block both presentation attacks (like a photo or video shown to a camera) and injection attacks (where a deepfake is fed directly into a device or app).
IDC notes that this level of sophistication is critical in a threat landscape where generative AI can be used to create fake identities at scale.

Privacy Is Now Just as Important as Security

In high-risk sectors like banking and fintech, biometric authentication must meet both security and privacy requirements. Most systems force organizations to choose one or the other, while strong server-side matching usually comes at the cost of storing sensitive biometric data in the cloud.
Keyless takes a different approach. Our platform is powered by Zero-Knowledge Biometrics™, which uses cryptographic techniques to authenticate users without ever storing or exposing biometric data.
IDC recognizes Keyless for its commitment to privacy-preserving design. Unlike centralized systems, our solution ensures that:
  • Authentication is performed using encrypted data that is meaningless outside of the original device.
  • Even if systems are breached, there’s no usable biometric information to steal.
This makes Keyless compliant with global privacy regulations like GDPR, eIDAS, and ISO, and enables deployment in regulated markets where other biometric vendors fall short.

Independent Validation Sets Keyless Apart

IDC highlights that all Keyless technology is developed internally, with no white-labeled components. Our authentication engine is backed by a decade of academic research and protected by multiple patents.
Our platform is certified under globally recognized standards. We’re also the first vendor to achieve “High” classification under the new CEN/TS 18099:2025 standard for deepfake and injection attack prevention, a benchmark for digital identity proofing in Europe.

Adoption Across Regulated and High-Assurance Industries

Keyless is already deployed in production with major financial institutions across Europe, including Italy’s largest traditional bank and Germany’s largest neobank. We also work closely with EY, Deloitte, and Accenture to support enterprise integration and go-to-market.
IDC notes that Keyless’ maturity and structured go-to-market approach make it the most established vendor in its category. Our ability to integrate into broader identity and fraud ecosystems – including through partnerships like our work with Experian – enables organizations to deploy deepfake-resistant authentication alongside their existing infrastructure.

A Strong Signal for IAM and Fraud Leaders

Being named an IDC Innovator is a strong signal for identity, fraud, and compliance leaders looking to protect users in an AI-powered threat environment.
Deepfake detection can no longer be a bolt-on feature – it must be a core part of any biometric authentication system. And as the lines blur between IAM, authentication, and fraud prevention, technologies that offer privacy-preserving, AI-resilient security will become essential.
Want to learn more about how we’re helping banks and fintechs detect deepfakes and stop identity fraud? Get in touch to request a demo.
Read Next
Blog
Authentication vs Authorization: What’s the Difference and Why it Matters
In this blog, we’ll break down authentication vs authorization in simple terms, explain why both are essential, and show how Keyless handles authentication in a more secure and private way.
Read Now
Blog
Phishing-Resistant MFA: What It Is and Why You Need It
In this blog, we’ll explain what phishing-resistant MFA is, why it’s essential for securing accounts and preventing breaches, and how businesses can implement it to protect both users and sensitive data.
Read Now
Blog
Passkeys Are Here to Stay. But Don’t Bet Everything on Them
Passkeys improve UX but struggle in high-risk scenarios like recovery or large transactions. Where do biometrics fit in? Read our preview blog ahead of the publication of the 2026 Authentication Trends Report.
Read Now
Consumer SolutionsWorkforce SolutionsTechnologyIndustriesResourcesCompanySupport Center
PSD2/SCA CompliantPSD2/SCA Compliant
GDPR CompliantGDPR Compliant
CCPA CompliantCCPA Compliant
FIDO2 CertifiedFIDO2 Certified
FIDO Biometrics CertifiedFIDO Biometrics Certified
ISO 27001 CertifiedISO 27001 Certified
ISO 9001 CertifiedISO 9001 Certified
ISO/IEC 30107-3 CertifiedISO/IEC 30107-3 Certified
NIST AccreditedNIST Accredited
eIDAS Module CertifiedeIDAS Module Certified
© 2025 Keyless. All rights reserved.
Cookie Settings