The 2025 Mosaic Rewind: 12 Breakthroughs That Shaped Our Year and Drove Identity Security Innovation

Driven by the rapid rise of Generative AI, increasing fraud sophistication and the need for flexible, resilient identity foundations, 2025 sparked a defining leap forward for Mosaic. Over the course of the year, we expanded what organizations can achieve with identity and fraud prevention — from AI-assisted journey creation and biometric authentication to deeper fraud intelligence and new ways to integrate with the broader technology ecosystem.

It was also a year of recognition for Mosaic’s leadership in the market. Transmit Security was named a Leader in the 2025 Gartner Magic Quadrant for Access Management, and received Market Leader distinctions from KuppingerCole for Fraud Reduction Intelligence Platforms across both e-commerce and financial services. These acknowledgments reflect the continued trust our customers place in Mosaic as their identity foundation.

Across the platform, we introduced innovations that made identity journeys faster to build, easier to optimize and more adaptive to real-world behavior, including the launch of Spark, our AI assistant for the full identity lifecycle. Join us as we look back at the milestones that shaped Mosaic’s evolution in 2025.

2025 Highlights

Spark: An AI-Powered Shift in How Identity Security Is Built

Spark reshaped how teams approach identity security by bringing Generative AI into every stage of journey creation. Instead of stitching together tools or relying on manual effort, teams can use Spark to accelerate decisions, improve journeys and respond faster to changing user behavior and threats.

Spark helps teams:

• Clarify objectives through guided prompts aligned to business, UX and compliance needs

• Generate journeys for registration, login, recovery and fraud mitigation using natural language

• Embed security and privacy with adaptive risk checks, fraud logic and governance built in

• Analyze performance to understand drop-offs, friction points and elevated-risk behavior

• Optimize continuously with AI-driven suggestions for layout, copy, branching and policy

With this revolutionary approach to Identity Orchestration, Spark shifts identity security from a static workflow to an adaptive system that learns from real activity and evolves with your users, your policies and the threats you face.

FAPI 2.0 Certification: Strengthening Trust and Standards Alignment

In 2025, Mosaic became officially FAPI 2.0 certified, a major step that reinforced our commitment to industry-leading security, interoperability and regulatory readiness. As one of the first platforms to adopt the finalized FAPI 2.0 specification, Mosaic is now even better positioned to support highly regulated sectors and use cases such as Open Banking, where strong authentication, secure data sharing and rigorous consent flows are essential.

Journey Analytics Brings New Visibility Into How Identity Flows Perform at Scale

Journey Analytics introduced a powerful new way to understand how orchestrated identity flows behave across real-world usage. Teams can view aggregated metrics such as completion rates, error trends, session duration and overall throughput across apps, geographies, device types and user segments. Flexible grouping, advanced filtering and comparative time-period analysis make it easier to spot behavioral patterns, monitor performance and identify opportunities for optimization. 

The drilldown experience adds even deeper diagnostic capability, with detailed event sequences, links to raw data and step-level duration metrics that highlight slow or problematic steps. Together, these capabilities give stakeholders a clear, actionable view of journey performance at scale.

Conversational AI Insights for Fraud Campaign Analysis

Fraud Campaigns were enhanced with AI-generated summaries that present patterns across related fraud events in a clear, narrative style. These conversational insights highlight timing, geography, device usage and attack vectors, giving analysts a faster, more intuitive understanding of how coordinated attacks unfold.

Orchestration for Complete B2B Identity Journeys

2025 marked a major step forward for customers with B2B CIAM needs, as Mosaic introduced full B2B Identity Orchestration. Organizations gained the ability to design and manage end-to-end identity journeys for business users, including inviting and onboarding members, handling authentication across partner entities and enforcing access policies at the org level. 

Teams can build these tailored B2B flows through the same drag-and-drop orchestration experience used for consumer journeys, making it easier to scale identity management across companies while meeting specific business and compliance requirements.

A New Integration Marketplace for External Connections and Automation

The Integration Hub emerged as Mosaic's marketplace for connecting third-party solutions and other external services, bringing together a catalog of prebuilt integrations alongside support for fully custom connections. It allows teams to incorporate communication tools, data systems, analytics platforms and security services into both real-time user journeys and offline operational workflows, improving coordination between identity processes and the broader systems organizations rely on.

Multi-Session Detection: Advancing Fraud Intelligence Beyond the Single Event

We expanded Mosaic’s fraud detection capabilities with Multi-Session Detection, which moves fraud prevention beyond isolated events by comparing signals across multiple verification sessions. By examining biometric similarity and document patterns over time, Mosaic can surface repeated selfies, synthetic identities and signals associated with deepfakes or manipulated media that are difficult to detect in single-session checks.

Powered by generative AI models, link analysis and advanced face-matching, this enhancement added a new layer of intelligence on top of real-time verification, helping teams identify fraud attempts with far greater accuracy.

Synthetic IDs using the same face with different personal information.

Bringing Facial Biometrics Into Mosaic’s Authentication Experience

Face Authentication was one of the standout additions to Mosaic this cycle, giving organizations a fast, intuitive and secure way to authenticate users with facial biometrics directly within orchestrated flows. This capability also extends to login forms and the SSO Hosted Experience, and is available across web, iOS and Android with full Spark compatibility.

Computer-Using Agent (CUA) Detection and Visibility

As AI models become more capable, a new class of automated activity is emerging: Computer-Using Agents (CUAs). These agents, such as ChatGPT’s Agent Mode or similar AI assistants, can interact directly with user interfaces by browsing the web, clicking buttons and completing forms in ways that closely resemble human behavior. While powerful, this capability also introduces new risks, including automated account creation, scripted navigation through login flows and large-scale data extraction.

To address this, Mosaic introduced enhanced detection and visibility for Computer-Using Agents. By analyzing a combination of infrastructure signals, device and platform inconsistencies, behavioral patterns and UI-level indicators, Mosaic can identify activity that aligns with known CUA behaviors and surface it clearly within fraud and risk workflows. This gives teams early insight into AI-driven automation, helps distinguish human traffic from automated agents and supports more informed decisions as these technologies continue to evolve.

Auto-Capture Available in Web, Android and iOS SDKs

Identity verification became even more seamless with the introduction of Auto-Capture. Instead of relying on manual photo capture, Mosaic now detects when an ID or selfie is properly positioned and captures it automatically, producing clearer images with fewer errors. This reduces glare, blur and misalignment while helping users complete verification with fewer retries.

Collaborative Threat Intelligence to Strengthen Fraud Defense

We built our Collaborative Threat Intelligence module, giving organizations the option to share and receive anonymized fraud signals across the Mosaic ecosystem. Opting in connects customers to a broader stream of real-time intelligence, making it easier to spot emerging attack patterns based on activity observed across participating environments.

Participation is entirely optional and governed by strict privacy and data-handling standards. Customers maintain full control and can enable or disable the setting at any time, supporting a more flexible and resilient collective defense against fraud.

Upgraded Support for Cross-Tenant Management

Orchestration gained important configuration and management capabilities this year, like the new Version Management APIs that make it easier to import, export and validate journey components across tenants. These APIs streamline cross-environment deployments and are complemented by a new Environment Variables section that lets teams define reusable configuration values for consistent rollouts across dev, staging and production.