How does KBA work?
With KBA, information is heavily encrypted until the user identifies themselves by providing information that is private and exclusive to them. After a person’s identity has been confirmed, they have access to the service, documents, or information. This type of authentication is growing more sophisticated each year to prevent information from falling into the wrong hands. The benefits of KBA are impressive and it is considered one of the best types of identity authentication available because the process is quite secure. These two types of KBA are known as static KBA and dynamic KBA.
Static KBA
Static KBA is the method that allows the client to select certain security questions during the setup of the account they supply the answers to. Most people have experienced this with question choices such as “What is your mother’s maiden name,” or “What was your high school mascot?” Users usually have to answer up to three of these questions to prove their identity and move forward toward full access. Static KBA is just one method that maximizes security and increases the confidence of both the company and the user.
Dynamic KBA
Dynamic KBA presents unique questions for the user to answer generated from data sources in real-time. These questions go beyond the information that may be found online and dig deeper into the user’s experience. Proper questions should not be easy for a stranger to guess but not so difficult for the intended user to remember.
Examples of the types of questions that may be presented are “What date was your last bank deposit,” or “What model of car was registered in your name in California in 2012?” Usually, this method includes a time feature that requires an answer within a set period. Failing to answer the question in the time frame is treated as a wrong answer and access is denied. The dynamic KBA is a multilayered approach that requires maximum security.
Steven Ransom 