Implement remote IAL2 identity proofing evidence collection and validation per NIST 800-63A-4

Verified steps

1. Collect the applicant's identity evidence: for remote IAL2, obtain at minimum one piece of Superior evidence (e.g., a Real ID-compliant driver license or passport) or two pieces of Strong evidence (e.g., a state-issued ID plus a utility bill or financial account document).
2. Perform document forensic validation: check security features, font consistency, and MRZ (machine-readable zone) checksum on the captured document image using an automated IDV vendor; record the authenticity score and any detected anomalies.
3. Bind the evidence to the applicant via biometric comparison: capture a selfie, run face match against the document portrait, and run a liveness/PAD check (ISO 30107-3 PAD Level 1 or 2); record the match confidence score and liveness result.
4. Validate identity attributes against authoritative sources: confirm name and date of birth via a database check (eCBSV for SSN, DLDV for driver license data, or a credit bureau lookup at NIST Fair evidence level).
5. Conduct identity resolution: confirm the identity presented is unique in your system and not a duplicate of an existing enrolled account by searching on name, DOB, and document number.
6. Document the complete proofing transaction record: evidence type, strength classification, validation method, binding method, attribute verification results, and timestamp, for audit and compliance review.