Deeper Insights, Smarter Detection, Easier Integrations: Discover What’s New in Mosaic

This month’s updates bring more power and clarity to your identity workflows. From enhanced session visibility and advanced multi-session detection to a new Integration Hub that simplifies ecosystem connectivity, Mosaic continues to deliver smarter detection, deeper insights and seamless integrations to help you stay ahead of fraud while improving user experiences.

Highlights

Enhanced Session Visibility Now Available in the Verification Page

We’ve introduced a major improvement to the verification reports page, giving you deeper insight into re-submission sessions to better understand why users retry and where they drop off in the identity verification funnel.

• Re-submission breakdown: See the reason for each re-submission and where the user failed, such as expired documents or biometric mismatches.

• Why re-submissions happen: When verification models detect missing or insufficient data and can’t reach a confident verdict, users are prompted to provide clearer inputs—like higher-quality images or complete documents—through an additional flow.

• Re-capture image samples: View image samples from the user’s final session, including document and selfie captures, to understand why the system requested additional images. These insights help pinpoint problematic steps and even uncover suspicious behavior when users attempt to bypass the system.

This added transparency empowers teams to troubleshoot faster, support users more effectively and learn from edge cases, making identity verification flows more efficient and secure.

* General availability

Multi-Session Detection: New “Repeated Profile” Insight

We’re excited to introduce Repeated Profile, a new capability in our Multi-Session Detection feature. 

Following the success of Repeated Face, which flags cases where the same face appears across multiple sessions with different identity details, Repeated Profile targets the inverse fraud pattern: detecting situations where the same personal details—such as full name, date of birth and gender—are used with at least one different face.

Repeated Face detects:

• Synthetic identities built from shared or recycled profile attributes

• Coordinated fraud rings reusing the same identity data with different faces

• Attempts to bypass biometric duplication checks

Together, Repeated Face and Repeated Profile offer a more complete view of suspicious cross-session behavior, helping you stay ahead of emerging fraud patterns.

* General availability

Integration Hub: Connect Mosaic With External Services and Automate Workflows

Our Integration Hub is now the central place to configure Identity Orchestration External Connections and set up Automated Workflows, making it easier than ever to connect Mosaic with other tools and platforms. 

You can seamlessly integrate with third-party services such as:

• Communication tools – e.g., messaging, notifications and customer engagement platform

• Data systems – connect to databases, CRMs and identity stores

• Analytics platforms – share insights and enrich decision-making

• Security solutions – integrate threat intelligence and detection tools

* General availability

Orchestration

Improved Error Logging for Better Observability

A new global error logging framework (ts_error_code) is now live, providing standardized error capture, richer contextual details and consistent reporting across all authentication and registration steps and APIs. This enhancement improves observability and strengthens the resiliency of your identity workflows by making it easier to troubleshoot and act on issues quickly.

* General availability

Granular Error Management in External Connections

You can now define custom error logging and branching for External Connections, giving you greater control and observability within journey flows. Custom errors can be matched, logged in step events and handled directly within both External Connection and Invoke Web Service steps.

* General availability

Smarter Push Authentication With Multiple Channels

The Web to Mobile step now supports multiple push notification channels and device-level filtering, providing more control over how authentication requests are routed. You can target specific apps or devices to deliver a cleaner, more seamless user experience while improving precision in multi-device environments.

* General availability

Customer Identity Management

App-Specific Token Signing Keys for Stronger Isolation

It's now possible to opt in to use dedicated token signing keys for individual apps, enhancing security and improving isolation between tenants. When enabled, all newly issued tokens for that app are signed with its unique key, while existing tokens signed with the tenant-level key remain valid during a 14-day transition period.

* General availability

OCSP Validation for Client Certificates in mTLS

We’ve added support for validating the revocation status of client certificates during mTLS authentication using the Online Certificate Status Protocol (OCSP). This capability enables enterprises to enforce real-time revocation checks, strengthening security and ensuring compliance in PKI environments.

* General availability

Set a Default Phone Region in Hosted Experience

Hosted Experience now supports configuring a default phone region, allowing admins to preselect the country flag and phone prefix displayed in input fields. Users can still change their selection during sign-up or login flows for flexibility.

Additionally, the Branding & Language tab has been renamed to Customization to better reflect its broader configuration options.

* General availability

Cross-Platform Enhancements

Improved User Activity Logs for Better Insights

We’ve refreshed and expanded the list of tracked user activities to capture the most valuable events across Mosaic. These updates ensure your logs are more meaningful, accurate and actionable, whether you’re viewing activity data in the Mosaic interface or consuming it via the streaming API.

* General availability