Let's Face It: Smarter Auth, Better Data, Stronger Control

September’s release brings powerful building blocks for modern identity. From facial biometrics and smart OTP flows to actionable journey analytics, these updates are about more than features: they’re about enabling smarter security, clearer insights and seamless user interactions across channels.

Highlights

Authenticate With a Look: Face Authentication Now Available

We’re excited to announce the launch of Face Authentication, a major step forward in biometric authentication for the Mosaic platform. Now available as part of our Orchestration service, this feature allows customers to build secure, modern journeys using facial recognition for authentication and login.

This new capability expands what’s possible in both identity verification and user authentication, offering biometric flexibility and stronger fraud prevention across journeys.

You can now:

• Register Face: Add a captured face image to a user’s profile as a biometric reference. This registration typically follows a selfie or identity verification step and is used for future comparisons.

• Capture Selfie: Use a dedicated step to collect a live selfie from the user. The image can then be used in subsequent face registration or authentication steps.

• Authenticate Face: Match a newly captured selfie against the registered reference image. The step performs matching only (not capture), and returns a pass/fail verdict that can drive branching in your journey.

• Add Face Authentication to Login Forms: Face Authentication is now available as an option in login forms and the SSO Hosted Experience, bringing biometric login to your user-facing experiences.

All steps are fully compatible with Spark and available across Web, iOS and Android code generators.

* Available in sandbox

Journey Analytics for End-to-End Visibility

We’re introducing Journey Analytics — a powerful new tool for evaluating how your Orchestration journeys perform at scale. With this update, you can now view aggregated metrics across multiple journey invocations to better understand user behavior, monitor performance and optimize success rates.

This new experience provides visibility beyond troubleshooting individual sessions, helping teams and stakeholders track trends like completion rates, error spikes and session duration across geographies, apps and user segments.

Key capabilities include:

• Aggregated Metrics: Track total sessions, average duration, completion rates and error rates across any time period.

• Flexible Grouping: Break down metrics by Journey Name, Application, Device Type, Geography and more.

• Advanced Filtering: Filter by time range, app, client, user, platform and other parameters to explore specific behaviors or issues.

• Comparative Analysis: Compare current metrics to past timeframes to identify trends and evaluate impact over time.

* General availability

Orchestration

Strengthen Mobile Approvals With OTP Verification

To boost protection against push fatigue and improve assurance for high-risk actions, we've enhanced Web to Mobile Authentication with a new OTP-based interaction.

You can now configure your web journeys to display a one-time passcode (OTP) that users must input on mobile before the journey proceeds. This added step ensures users are fully aware and actively consenting to the authentication request, making it harder for attackers to exploit inattentive approvals.

* Available in sandbox

Send Push Notifications Anywhere in Your Journeys

Journey builders can now send push notifications for a variety of use cases beyond OTP delivery — including login approvals, security alerts and user engagement prompts — directly to users' mobile devices. This new step supports flexible message configuration, device targeting and integration with standard or custom push providers via External Connections.

* Available in sandbox