A presentation attack is an attempt to fool a biometric system with a fake face, replayed video, mask, or other synthetic artefact. In practice, the control fails when it measures resemblance alone, because the attacker’s objective is to pass as the real user without actually being that person.
Expanded Definition
Presentation attack is a biometric spoofing attempt aimed at the sensor layer, not the account layer. The attacker presents a fake face, replay, mask, or synthetic artefact so the system accepts a live enrolment or authentication event as genuine. In NHI and IAM contexts, the key distinction is that the target is often the physical or device-facing proofing step, where a biometric check is used to unlock an identity workflow.
Definitions vary across vendors when biometric liveness, anti-spoofing, and presentation attack detection are bundled together, so practitioners should separate the attack from the countermeasure. Standards guidance is strongest in biometrics, especially ISO/IEC 30107 on presentation attack detection, while broader identity governance must still account for how the biometric result is consumed downstream. NHI Management Group’s Ultimate Guide to NHIs — Why NHI Security Matters Now shows why identity assurance failures matter once they are connected to privileged access and automation. The most common misapplication is treating a successful face match as proof of real presence, which occurs when systems skip liveness checks or accept reused media during remote onboarding.
Examples and Use Cases
Implementing presentation attack resistance rigorously often introduces friction and false rejects, requiring organisations to weigh user convenience against stronger fraud resistance.
- A remote onboarding flow accepts a printed face photo because the verifier checks resemblance but not liveness, allowing an impostor to enroll.
- An employee badge unlock app is defeated by a replayed video shown to the camera, so the biometric factor is bypassed without credential theft.
- A deepfake-driven fraud attempt targets a customer verification call, and the biometric step fails to distinguish synthetic media from a live subject.
- A kiosk or access gate is hardened after a mask-based spoofing attempt reveals that the system lacks robust presentation attack detection.
These scenarios are widely discussed across biometric security guidance and incident research. For threat context, NHI practitioners can compare spoofing risk with the broader abuse patterns in the 52 NHI Breaches Analysis, where identity compromise often becomes a path to larger privilege abuse. For adversarial framing, MITRE ATLAS adversarial AI threat matrix helps teams think about synthetic manipulation as part of a broader attack chain rather than a one-off fraud event.
Why It Matters in NHI Security
Presentation attack matters because identity systems increasingly gate access to secrets, service accounts, and automated workflows. If a spoofed biometric approves registration or step-up authentication, the resulting identity can be used to mint credentials, approve changes, or unlock sensitive workflows that later power NHI abuse. That is especially dangerous in environments where biometric proofing is treated as a substitute for strong device trust, phishing-resistant factors, or human review.
NHIMG research shows the scale of adjacent identity risk: 96% of organisations store secrets outside secrets managers in vulnerable locations, and 80% of identity breaches involved compromised non-human identities such as service accounts and API keys. When presentation attack succeeds at the front door, those downstream weaknesses become much easier to exploit. The right response is layered assurance, not biometric optimism. Teams should combine anti-spoofing, identity proofing policy, device trust, and privileged access controls, especially where automation or delegated access follows the biometric event. Ultimate Guide to NHIs — Key Challenges and Risks is a useful reference for that broader control context. Organisations typically encounter the impact only after a spoofed enrollment or unlock has already enabled unauthorized access, at which point presentation attack becomes operationally unavoidable to address.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST AI RMF and NIST CSF 2.0 set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-01 | Biometric spoofing can undermine identity assurance before NHI controls even begin. |
| NIST AI RMF | AI risk guidance applies when face matching or liveness uses machine learning. | |
| NIST CSF 2.0 | PR.AC | Presentation attacks directly weaken authentication and access control outcomes. |
Treat biometric enrollment as a high-risk trust decision and require layered verification before issuing NHI access.
Related resources from NHI Mgmt Group
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on June 9, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org
