Digital onboarding and identity proofing: are your controls enough?

TL;DR: Digital onboarding now determines whether organisations stop stolen, synthetic, and AI-generated identities at first touch, with the source article tying strong identity proofing to faster time-to-value, higher completion rates, and lower fraud losses. The security question is no longer whether onboarding can be automated, but whether verification is strong enough to preserve trust at scale.

NHIMG editorial — based on content published by 1Kosmos: digital onboarding and identity proofing guidance

Questions worth separating out

Q: How should security teams set assurance levels in digital onboarding?

A: Security teams should align assurance levels to the downstream risk of the identity being created.

Q: Why do synthetic identities create such a problem for onboarding?

A: Synthetic identities blend real and fabricated data to look legitimate to basic checks.

Q: What breaks when onboarding focuses on speed instead of assurance?

A: When speed becomes the primary goal, organisations are more likely to accept weak evidence, miss fraud indicators, and issue reusable identities to the wrong person.

Practitioner guidance

• Define enrolment assurance thresholds Set different proofing thresholds for low-risk and high-risk identities, then require stronger verification before account activation when the downstream privilege or compliance exposure is higher.
• Layer independent identity signals Combine document authenticity checks, biometric matching, liveness detection, and external screening so that no single signal decides trust on its own.
• Measure fraud resistance alongside completion Track abandonment, time-to-value, fraud loss, and false acceptance together so operational teams cannot optimise onboarding speed at the expense of assurance.

What's in the full article

1Kosmos's full article covers the operational detail this post intentionally leaves for the source:

• Step-by-step digital onboarding flow design for registration, proofing, and activation.
• Document verification and liveness detection considerations for remote enrolment.
• Metrics for time-to-value, completion rate, and fraud loss across onboarding journeys.
• Operational discussion of how onboarding supports passwordless authentication and compliance.

👉 Read 1Kosmos's guidance on digital onboarding, identity proofing, and fraud resistance →

Digital onboarding and identity proofing: are your controls enough?

Explore further

View Full Forum →  |  NHI Foundation Course →