Subscribe to the Non-Human & AI Identity Journal
Threats, Abuse & Incident Response

Liveness Attack

← Back to Glossary
By NHI Mgmt Group Updated July 1, 2026 Domain: Threats, Abuse & Incident Response

A liveness attack is an attempt to fool a system into accepting a fake person, image, or video as a real, present human. In consumer identity journeys, it targets selfie and video checks by using deepfakes, replayed media, or scripted interaction to defeat verification.

Expanded Definition

Liveness attacks sit at the intersection of identity proofing and fraud operations, because they target the assurance that a presented face is actually a live human rather than a replay, mask, or synthetic stream. In practice, the attack is not limited to a selfie challenge. It can include deepfaked video, scripted head movement, injected frames, or relayed media from another device. Definitions vary across vendors because some systems call the problem presentation attack detection, while others reserve liveness for stronger active challenge-response checks.

For NHI Management Group, the key distinction is that a liveness attack compromises the moment of initial trust establishment, not necessarily an authenticated session already in progress. That makes it especially relevant in account opening, identity recovery, and high-risk step-up verification. Standards bodies such as CISA cyber threat advisories and identity assurance guidance are useful reference points, but no single standard governs this yet across all consumer and enterprise flows. The most common misapplication is treating any biometric check as liveness, which occurs when teams assume face match alone defeats replay or deepfake submission.

Examples and Use Cases

Implementing liveness rigorously often introduces user friction and operational complexity, requiring organisations to weigh faster enrollment against higher fraud resistance.

  • A fraudster submits a recorded selfie video during onboarding, trying to defeat a passive liveness model that only checks motion patterns.
  • An attacker uses a deepfake feed during remote identity verification to impersonate a real employee in a privileged access recovery flow.
  • A scripted browser automation tool synchronises blinking and head turns to bypass a low-quality challenge-response check.
  • Security teams compare attack patterns against the 52 NHI Breaches Analysis and map them to broader AI-enabled abuse patterns described in Anthropic — first AI-orchestrated cyber espionage campaign report.
  • Identity platforms add active prompts, device telemetry, and risk scoring to raise the cost of replay and injection attacks while preserving acceptable conversion rates.

Why It Matters in NHI Security

Liveness attacks matter to NHI security because the same adversarial mindset used to defeat human identity proofing often appears later in service-account abuse, credential theft, and AI-assisted social engineering. A weak verification step can create a trusted identity record that is then used to obtain tokens, reset factors, or request privileged access. NHI Mgmt Group research shows that 79% of organisations have experienced secrets leaks, with 77% of those incidents causing tangible damage, which illustrates how quickly a single bypass can become a broader identity compromise.

This is why liveness should be treated as part of an end-to-end assurance chain, not as a standalone camera check. The Ultimate Guide to NHIs — Why NHI Security Matters Now shows why identity trust failures propagate into operational risk, while the Ultimate Guide to NHIs — Key Challenges and Risks highlights the visibility and governance gaps that make remediation difficult. Organisations typically encounter the full impact only after account takeover, enrolment fraud, or recovery abuse, at which point liveness becomes operationally unavoidable to address.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

OWASP Agentic AI Top 10 address the attack and risk surface, while NIST AI RMF and NIST CSF 2.0 set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
OWASP Agentic AI Top 10Agentic systems can be abused with synthetic media and spoofed human signals.
NIST AI RMFRisk management requires evaluating spoofing and deception in AI-enabled identity flows.
NIST CSF 2.0PR.AAIdentity assurance and authentication outcomes depend on resisting impersonation attacks.

Assess liveness failure modes, then document mitigations, monitoring, and residual risk.

NHIMG Editorial Note
Reviewed and updated by the NHIMG editorial team on July 1, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org