By NHI Mgmt Group Editorial TeamPublished 2025-12-05Domain: Governance & RiskSource: Oz Forensics

TL;DR: The EUDI Wallet rollout will force banks, telecoms, platforms, and governments to defend against presentation and injection attacks while meeting Level of Assurance High expectations, according to Oz Forensics. The real issue is not just compliance timing but whether biometric onboarding can prove the claimant is genuine when synthetic identity fraud scales faster than manual review.


At a glance

What this is: This is an analysis of how the EUDI Wallet changes digital identity assurance, with a focus on biometrics, anti-spoofing, and cross-border onboarding risk.

Why it matters: It matters because identity teams will need to align citizen onboarding, KYC, and relying-party acceptance flows with stronger verification controls that resist deepfakes and injection attacks.

By the numbers:

👉 Read Oz Forensics's analysis of EUDI Wallet biometric security strategies


Context

The EUDI Wallet is a digital identity credential that shifts trust from repeated document checks toward a government-backed wallet and stronger biometric binding. For identity teams, the key question is whether onboarding and authentication controls can resist synthetic fraud without making the flow unusable.

The article argues that biometric security is now a governance issue, not just a user-experience choice. If relying parties cannot distinguish a real claimant from a deepfake or injected video stream, the wallet becomes easier to adopt on paper than to trust in production.


Key questions

Q: How should organisations prepare to accept the EUDI Wallet in onboarding flows?

A: Start by identifying every onboarding journey that will depend on wallet acceptance, then map the assurance threshold each journey actually needs. Treat biometric proofing, document checks, and fraud controls as one decision path. If the flow cannot withstand synthetic input or device tampering, it is not ready for production acceptance.

Q: Why do deepfakes and injection attacks change biometric risk so much?

A: They break the assumption that the image seen by the system came from a real person and a real sensor. That means identity teams can no longer rely on face match alone. They need controls that validate source integrity, session integrity, and the attack resistance of the biometric stack.

Q: What do security teams get wrong about passive liveness?

A: They often treat low-friction verification as if it were automatically safer or more mature. Passive liveness improves usability, but it does not solve spoofing or injected-stream risk by itself. Teams still need test evidence, certification scope, and explicit assurance thresholds before relying on it.

Q: Who is accountable when wallet acceptance fails a fraud or identity test?

A: Accountability sits with both the wallet acceptor and the issuer, because each controls a different part of the trust chain. The issuer vouches for the credential, but the relying party decides whether the presented evidence meets its own risk threshold. Governance must define that split before incidents test it.


Technical breakdown

Presentation attack detection and biometric spoofing

Presentation attack detection, or PAD, is the control layer that looks for physical spoofs shown to a camera, such as printed photos, replayed video, or 3D masks. In EUDI Wallet onboarding, PAD has to be strong enough to support high assurance, because a weak liveness check can satisfy a user flow while failing the underlying identity proofing objective. Standards such as ISO/IEC 30107-3 matter because they separate claims of liveness from tested resistance to attack conditions.

Practical implication: validate PAD certification against the exact onboarding and device conditions your identity flow will face.

Injection attacks and virtual camera bypasses

Injection attacks bypass the camera path entirely by feeding a synthetic stream into the application layer through emulator tooling or virtual camera software. That makes them harder to catch than physical spoofs because the input can look mathematically consistent even when no real person is present. CEN/TS 18099 exists because traditional liveness checks were not built to inspect the integrity of the video source itself, only the apparent liveliness of the image.

Practical implication: test whether your onboarding stack can detect tampered input sources, not just face spoofing.

Passive liveness and interoperability

Passive liveness works in the background rather than asking the user to perform gestures, which matters when a system must scale across countries, devices, and accessibility needs. For the EUDI Wallet, interoperability depends on security that does not fracture the user experience into country-specific or vendor-specific flows. Passive methods reduce friction, but they still need strong anti-injection and anti-spoof controls or they simply move the attack surface earlier in the journey.

Practical implication: pair low-friction liveness with stronger source-integrity testing before you accept it as production-ready.


NHI Mgmt Group analysis

Biometric onboarding has become an identity assurance boundary, not a UX choice. The EUDI Wallet shifts verification from isolated customer onboarding into a cross-border identity trust model where failure is systemic, not local. That means wallet issuers and relying parties are now governing the integrity of the proofing event itself, not just the account created afterwards. The implication is that onboarding controls have to be judged as part of identity assurance architecture, not front-end convenience.

Deepfake-driven fraud exposes a trust gap between proofing and possession. Face matching alone no longer proves that the person in front of the camera controls the identity being presented. Generative AI and injection tooling have made it too easy to separate a live user from the biometric artefact the system sees, which is why static verification assumptions are eroding. Practitioners need to treat biometric binding as a high-risk control path, not a cosmetic layer on top of identity proofing.

Source integrity is the named concept this rollout forces into the open. The control problem is no longer only whether a face is real, but whether the biometric signal came from a real sensor and a real session. That is the distinction between detecting a spoof and detecting an injected stream, and it changes how assurance should be assessed. Identity programmes that do not separate those two threat classes will overestimate their assurance and understate their fraud exposure.

Cross-border digital identity only works when assurance is interoperable. A wallet accepted in multiple jurisdictions cannot depend on inconsistent biometric standards, because uneven controls create uneven trust. That makes certification, assurance level, and verified anti-spoof testing part of the interoperability problem, not separate compliance tasks. Practitioners should expect policy, vendor selection, and customer experience decisions to converge around the same assurance baseline.

Relying parties will inherit part of the state-issued trust burden. Once banks, telecoms, and large platforms must accept the wallet, they become responsible for deciding whether the presented identity is trustworthy enough for their own risk appetite. That forces IAM, fraud, and customer onboarding teams to work from the same trust evidence instead of separate control narratives. The practical conclusion is that acceptance flows need explicit assurance thresholds and testable biometric evidence.

From our research:

  • 92% of organisations expose NHIs to third parties, raising concerns about supply chain security, according to Ultimate Guide to NHIs.
  • 91.6% of secrets remain valid five days after the targeted organisation is notified, showing that remediation windows often outlast the initial exposure event.
  • That same lifecycle gap is explored in Ultimate Guide to NHIs , Lifecycle Processes for Managing NHIs, which is useful when teams need to connect verification, revocation, and offboarding.

What this signals

Source integrity will become a design requirement for any identity flow that accepts remote proofing, biometric signals, or wallet-based authentication. The organisations that treat anti-injection testing as part of identity assurance rather than fraud tooling will be better positioned to absorb the EUDI Wallet shift. For broader control mapping, see NIST Cybersecurity Framework 2.0 and NIST SP 800-53 Rev 5 Security and Privacy Controls.

Wallet acceptance will not be a single control decision, because it affects onboarding, customer support, fraud review, and authentication policy at the same time. Teams should prepare for more explicit assurance thresholds, more evidence-driven supplier reviews, and more pressure to prove that verification workflows resist synthetic inputs.

The practical signal is that biometrics are moving closer to identity infrastructure and away from edge-case UX. That means programme owners need to align digital identity, fraud, and IAM governance before external acceptance mandates arrive.


For practitioners

  • Map the new relying-party decision points Identify where your organisation will have to accept the EUDI Wallet, and align those checkpoints with fraud, onboarding, and IAM ownership before 2027.
  • Test for injection as well as spoofing Run onboarding scenarios that emulate virtual camera bypasses, emulator paths, and synthetic video streams, not only photo or mask presentation attacks.
  • Require assurance evidence from biometric suppliers Ask for certification, test scope, and device-path coverage that demonstrates resistance to both presentation attacks and injected inputs.
  • Set a clear LoA High threshold Define the biometric and document-proofing combinations that your organisation will accept only when the session meets high-assurance expectations.

Key takeaways

  • The EUDI Wallet turns biometric onboarding into a trust boundary that identity teams must govern, not just a user journey they must simplify.
  • The main failure mode is source integrity, because deepfakes and injected streams can defeat face-based verification even when the user experience appears normal.
  • Practitioners should test for both spoofing and injection, then demand assurance evidence that matches the real relying-party risk they will inherit.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

NIST CSF 2.0 and NIST SP 800-53 Rev 5 set the technical controls, while ISO/IEC 27001:2022 and GDPR define the regulatory obligations.

FrameworkControl / ReferenceRelevance
NIST CSF 2.0PR.AC-1Wallet acceptance depends on verifying and managing identity assertions before access is granted.
NIST SP 800-53 Rev 5IA-2The article centres on stronger authentication for citizen and customer identity proofing.
ISO/IEC 27001:2022A.5.17Identity verification controls need clear authentication information management.
GDPRArt.32Biometric onboarding processes process personal data and require security measures proportionate to risk.

Assess biometric processing under Art.32 and align safeguards to the sensitivity of identity data.


Key terms

  • Presentation Attack Detection: Presentation Attack Detection is the ability to spot fake physical inputs such as photos, replayed video, or masks shown to a biometric sensor. In identity programmes, it measures whether the sensor can distinguish a live claimant from an artefact presented to the camera.
  • Injection Attack: An Injection Attack bypasses the sensor path by feeding synthetic biometric data into the application layer through software or emulation. The risk is not only spoofing the user, but corrupting the source of the biometric signal before liveness controls can evaluate it.
  • Passive Liveness: Passive Liveness is a verification method that assesses whether a subject is real without asking them to perform explicit gestures. It reduces friction, but for high-assurance identity use cases it still needs complementary testing for spoofing, replay, and source integrity.
  • Level Of Assurance High: Level of Assurance High is the strongest assurance level referenced in the article for wallet-based identity acceptance. It implies that the identity proofing and authentication process must withstand sophisticated fraud attempts and deliver evidence strong enough for high-risk relying-party decisions.

What's in the full article

Oz Forensics's full article covers the operational detail this post intentionally leaves for the source:

  • CEN/TS 18099 testing considerations for detecting injection attacks in onboarding flows
  • The role of NFC chip reading alongside facial biometrics for higher assurance
  • How passive liveness changes accessibility and friction trade-offs in real deployments
  • Practical preparation steps for banks, telecoms, and other relying parties ahead of 2027

👉 Oz Forensics's full post covers the biometrics, assurance standards, and rollout timeline in more detail.

Deepen your knowledge

NHI governance, agentic AI identity, and machine identity lifecycle are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are building or maturing an IAM or identity governance programme, it is worth exploring.
NHIMG Editorial Note
Published by the NHIMG editorial team on 2025-12-05.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org