Ruka hadi maudhui makuu
Didit Yakusanya $2M na Kujiunga na Y Combinator (W26)
Didit
Uthibitishaji upya wa selfie pekee

Muingize mtumiaji tena. Kwa selfie moja.

Weka ulinganishaji wa uso wa chini ya sekunde 2 kwa watumiaji wanaorudi. Ruka kuweka upya nenosiri. Ruka kuchelewa kwa SMS. Ruka kuruka kwa kiungo cha uchawi. $0.10 kwa uthibitishaji upya, uthibitishaji 500 bure kila mwezi.

Anza bureSoma nyaraka
Inaungwa mkono na
Y Combinator
GBTC Finance
Bondex
Crnogorski Telekom
UCSF Neuroscape
Shiply
Adelantos

Inaaminika na mashirika 2,000+ duniani kote.

Mrundiko wa kuingia upya kwa kutumia selfie pekee, wa sinema nyeusi — paneli nne za glasi zinazoelea, zinazopitisha mwanga katika mtazamo wa 3D kwenye rangi nyeusi safi, zikipitishwa na mstari mweupe wa Didit unaong'aa na zikizungukwa na mabano ya skana yanayong'aa. Kila paneli ina motifu ndogo nyeupe-nyepesi inayowakilisha kitanzi cha kuburudisha cha duara, mstari unaounganisha kati ya nukta mbili, uso wa saa, na pete ya mwendelezo.

Bila nenosiri · sugu dhidi ya hadaa

Acha kupoteza watumiaji wanaorudi wakati wa kuingia. Sekunde mbili. Wamerudi.

Uwekaji upya wa nenosiri hupunguza ~30% ya watumiaji wanaorudi; nambari za Huduma ya Ujumbe Mfupi (SMS) zinaweza kuchukua hadi sekunde 90. Selfie dhidi ya picha ya mtumiaji iliyosajiliwa hukamilika kwa takriban sekunde mbili — mkataba wa kurudisha simu unaoingia kwa mtiririko wowote uliopo wa OAuth / OpenID Connect. $0.10 kwa kila kuingia upya. Uthibitishaji 500 bila malipo kila mwezi.

Jinsi inavyofanya kazi

Kutoka kujisajili hadi mtumiaji aliyethibitishwa kwa hatua nne.

  1. Hatua 01

    Unda mtiririko wa kazi

    Chagua ukaguzi unaotaka — Kitambulisho, uhai, kulinganisha uso, vikwazo, anwani, umri, simu, barua pepe, maswali maalum. Ziburute kwenye mtiririko kwenye dashibodi, au tuma mtiririko huo huo kwenye API yetu. Tawi kwenye masharti, endesha majaribio ya A/B, hakuna msimbo unaohitajika.

  2. Hatua 02

    Unganisha

    Pachika asili na SDK yetu ya Wavuti, iOS, Android, React Native, au Flutter. Elekeza kwenye ukurasa uliopangishwa. Au tuma tu mtumiaji wako kiungo — kwa barua pepe, SMS, WhatsApp, popote. Chagua kinachofaa mrundiko wako.

  3. Hatua 03

    Mtumiaji anapitia mtiririko

    Didit huandaa kamera, ishara za mwanga, uhamishaji wa simu, na ufikiaji. Wakati mtumiaji yuko kwenye mtiririko, tunapima ishara 200+ za udanganyifu kwa wakati halisi na kuthibitisha kila sehemu dhidi ya vyanzo vya data vya mamlaka. Matokeo chini ya sekunde mbili.

  4. Hatua 04

    Unapokea matokeo

    Webhooks zilizotiwa saini za wakati halisi huweka hifadhidata yako ikisawazishwa mara tu mtumiaji anapoidhinishwa, kukataliwa, au kutumwa kwa ukaguzi. Piga kura API inapohitajika. Au fungua koni ili kukagua kila kipindi, kila ishara, na kudhibiti kesi kwa njia yako.

Badilisha nenosiri · Ruka SMS · Tupa kiungo cha uchawi

Uwezo sita. $0.10 kwa uthibitishaji upya.

Simu moja ya API ya Vikao, uamuzi mmoja uliotiwa saini, mkataba wa kurudisha simu unaoingia. Unganisha na Uchambuzi wa Kifaa na IP ili kuruka selfie kabisa kwenye vikao vinavyojulikana kuwa vizuri.
Soma nyarakaPata ufunguo wa API
01 · Mtiririko wa kugusa ili kuingia

Gusa mara moja. Selfie moja. Rudi ndani.

Fungua simu ya API ya Vikao, elekeza mtumiaji kwenye Kitambulisho cha Rasilimali Sawa (URL) kilichopangishwa, nasa fremu moja tulivu. Uhai + Kulinganisha Uso 1:1 + kurudisha webhook iliyotiwa saini ndani ya sekunde mbili hizo hizo. Hakuna usakinishaji wa programu, hakuna Kifaa cha Kuendeleza Programu (SDK), hakuna njia ya mtoa huduma.
Moduli ya Uthibitishaji wa Kibayometriki
02 · dhidi ya nenosiri / SMS / kiungo cha uchawi

Msuguano mdogo. Hakuna hadaa. Nafuu kuliko SMS.

Nywila huibiwa, husahaulika, na huwekwa upya (tiketi ya usaidizi ya $1-$3 kila wakati). Nenosiri la mara moja la Huduma ya Ujumbe Mfupi (SMS) linaweza kuibiwa, linategemea mtoa huduma, na linaweza kuathiriwa na ubadilishaji wa SIM. Viungo vya uchawi huruka kwenye vichungi vya barua taka. Selfie dhidi ya picha iliyosajiliwa ni sugu dhidi ya hadaa, ya papo hapo, na ina bei isiyobadilika.
Matrix ya mbinu
03 · Kuongezeka kwa ubadilishaji

Acha kupoteza watumiaji wanaorudi mlangoni.

Uwekaji upya wa nenosiri kwa kawaida hupunguza ~30% ya watumiaji wanaorudi katikati ya mtiririko; nambari za SMS zinaweza kuchukua sekunde 5-90 kuanzia mwanzo hadi mwisho. Kuingia upya kwa selfie hukamilika kwa takriban sekunde mbili, bila ujumbe wa kusubiri na bila chochote cha kukumbuka. Matokeo: ongezeko linalopimika katika ubadilishaji wa kuingia kwa watumiaji wanaorudi.
Vigezo vya watumiaji wanaorudi
04 · Inaweza kutumika tena kwenye nyuso mbalimbali

Jisajili mara moja. Kila programu inayoendeshwa na Didit, bila malipo.

Funga Kitambulisho Kinachoweza Kutumika Tena kwa kila mtumiaji aliyesajiliwa. Sehemu inayofuata inayoendeshwa na Didit inayohitaji kuingia upya hicho hicho hutumia kitambulisho bila gharama. Mtumiaji anashikilia uthibitisho; programu yako inathibitisha saini. Athari ya mtandao huongezeka kwa kila mteja anayesafirisha Vitambulisho Vinavyoweza Kutumika Tena.
Moduli ya KYC inayoweza kutumika tena
05 · Kuongezeka kwa hatua inayobadilika

Ruka selfie kwenye kifaa kinachojulikana + IP inayojulikana.

Unganisha na Uchambuzi wa Kifaa na IP (umejumuishwa kwenye mrundiko wa ishara 200+ za udanganyifu). Mtumiaji anayerudi kwenye kifaa kinachojulikana na Itifaki ya Mtandao (IP) inayojulikana huruka selfie kabisa. Kifaa kipya kabisa au IP mpya husababisha hali tulivu; Tor / Virtual Private Network (VPN) kutoka kwenye kifaa kipya kabisa huongezeka hadi Active 3D. Mtiririko ule ule, vichochezi mahiri.
Moduli ya Uchambuzi wa Kifaa na IP
06 · Bei ya umma

$0.10 kwa uthibitishaji upya. Sawa. Ulimwenguni kote.

Bei ya umma, hakuna kiwango cha chini, hakuna mkataba. SMS ya Tier-1 ya Marekani ya nenosiri la mara moja inagharimu $0.05-$0.30 kwa kila kutuma na unalipa hata kama mtumiaji hajawahi kupokea nambari. Uwekaji upya wa nenosiri unagharimu $1-$3 kwa kila tiketi ya usaidizi. Kuingia upya kwa selfie ni $0.10 isiyobadilika na uthibitishaji 500 bila malipo kila mwezi, milele.
Angalia bei
Unganisha

Kipindi kimoja. Simu moja ya kurudisha. Tengeneza tokeni.

Fungua kipindi cha uthibitishaji wa kibayometriki, nasa selfie kwenye UI iliyopangishwa, thibitisha uamuzi uliotiwa saini, ingiza mtumiaji.
POST /v3/session/Thibitisha upya
$ curl -X POST https://verification.didit.me/v3/session/ \
  -H "x-api-key: $DIDIT_API_KEY" \
  -d '{
    "workflow_id": "wf_reauth",
    "workflow_type": "biometric_authentication",
    "vendor_data": "user-42",
    // base64 enrolment selfie, ≤ 1MB (omit for liveness-only)
    "portrait_image": "/9j/4AAQSkZJRgABAQE..."
  }'
201Imeundwa{ "session_url": "verify.didit.me/..." }
UI iliyopangishwa inaendesha LIVENESS + FACE_MATCH dhidi ya portrait_image iliyotolewa.nyaraka →
GET /v3/session/{sessionId}/decision/Uamuzi
$ curl https://verification.didit.me/v3/session/<id>/decision/ \
  -H "x-api-key: $DIDIT_API_KEY"

# Returns the re-auth verdict
{
  "status": "Approved",
  "face": { "similarity_score": 0.96 }
}
200OKhali Imeidhinishwa · Inapitiwa · Imekataliwa · Haijamalizika
Thibitisha X-Signature-V2 kwenye webhook iliyotiwa saini kwanza.nyaraka →
Ujumuishaji tayari kwa wakala

Badilisha nenosiri / SMS / kiungo cha uchawi katika kidokezo kimoja.

Bandika kwenye Claude Code, Cursor, Codex, Devin, Aider, au Replit Agent. Jaza mfumo wako. Wakala hutoa Didit, hubadilisha callback iliyopo ya mtumiaji anayerudi, na husafirisha ndani ya wikendi.
didit-integration-prompt.md
You are integrating Didit&apos;s selfie-only re-authentication into <my_stack>. Replace password, SMS one-time-password, or magic-link on returning-user surfaces with a sub-2-second face match against the enrolled portrait. Phishing-resistant, no carrier dependency, no SIM-swap surface, no email-delivery delay.

  1. Enrol the user&apos;s portrait ONCE at sign-up (standard Know Your Customer (KYC) session).
  2. On every returning-user sign-in, open a re-auth session that runs Passive Liveness + Face Match 1:1 against the stored portrait. ~2 seconds end-to-end.

Pricing (public):
  - Selfie re-auth: $0.10 per authentication (Sessions API)
  - First 500 verifications free every month, forever

PRE-REQUISITES
  - Production API key from https://business.didit.me (sandbox key in 60s, no card).
  - Webhook endpoint with Hash-based Message Authentication Code (HMAC) SHA-256 verification using the X-Signature-V2 header.
  - The user has previously enrolled via a Didit KYC session (the portrait captured during the liveness step is stored automatically, bound to vendor_data).
  - A workflow_id from the Workflow Builder. The workflow MUST contain LIVENESS, and the session is opened with workflow_type = "biometric_authentication".

STEP 1 — Open a re-auth session

  POST https://verification.didit.me/v3/session/
  Headers:
    x-api-key: <your api key>
    Content-Type: application/json
  Body:
    {
      "workflow_id": "<your biometric_authentication workflow>",
      "workflow_type": "biometric_authentication",
      "vendor_data": "<the same user id used at enrolment>",
      "callback": "https://<your-app>/reauth/callback",
      "metadata": {
        "purpose": "returning_user_signin",
        "device_id": "<optional, your device fingerprint>",
        "from_ip": "<optional, the request IP>"
      },
      "portrait_image": "<base64 JPEG of the user's enrolment selfie, ≤ 1 MB — REQUIRED when the workflow has FACE_MATCH active; OMIT for liveness-only mode>"
    }

  Response: 201 Created with the hosted session_url. Redirect the user. The hosted UI opens the front camera, captures one passive frame, runs Liveness + Face Match 1:1 against the user&apos;s enrolled portrait, returns the verdict in sub-2-seconds.

STEP 2 — Read the signed verdict on the webhook

  Body (excerpted for a passing re-auth):
    {
      "session_id": "<uuid>",
      "vendor_data": "<your user id>",
      "status": "Approved",
      "liveness": {
        "status": "Approved",
        "method": "PASSIVE",
        "score": 96
      },
      "face": {
        "status": "Approved",
        "similarity_score": 0.96
      }
    }

  Verify X-Signature-V2 BEFORE trusting the body — HMAC SHA-256 of the raw bytes with your webhook secret.

  Session status enum (exact case): Approved | Declined | In Review | Resubmitted | Expired | Not Finished | Kyc Expired | Abandoned.

STEP 3 — Branch your sign-in logic on the verdict

  Approved      → mint your session token, sign the user in.
  Declined      → block sign-in; fall back to a higher-friction recovery (support contact / full KYC re-do).
  In Review     → hold; route to your operations queue.
  Not Finished  → user abandoned the capture; safe to re-prompt or fall back to a backup factor.

STEP 4 — Adaptive step-up (recommended)

  Pair the selfie with Device & IP Analysis (bundled into the 200+ fraud-signal stack at no extra cost). Adaptive rules to consider:

    Known device + known Internet Protocol (IP)  → skip the selfie, mint a session token.
    Known device + new IP                         → run the selfie (passive).
    New device + new IP                           → run the selfie (passive).
    Tor / Virtual Private Network (VPN) exit +
      new device                                  → escalate to ACTIVE_3D method (motion challenge).

  Implement the branching in your application or in the Workflow Builder via per-session overrides.

CONSTRAINTS
  - Base URL for /v3/* endpoints is verification.didit.me (NOT apx.didit.me).
  - Feature enum is UPPERCASE: LIVENESS, FACE_MATCH, IP_ANALYSIS, ID_VERIFICATION, AML, AGE_ESTIMATION.
  - Method enum is UPPERCASE: PASSIVE, FLASHING, ACTIVE_3D.
  - Auth header is x-api-key (lowercase, hyphenated).
  - Webhook signature header is X-Signature-V2 (NOT X-Signature).
  - Status casing matches exactly: Approved, Declined, In Review, Expired, Not Finished, Resubmitted, Kyc Expired, Abandoned.
  - The face template is irreversible (a one-way hash). The user can request deletion via the standard data-subject-request path.

PRO TIPS
  - Bind a Reusable Credential to each enrolled user. The next Didit-powered surface that needs the same gate consumes the credential at zero cost.
  - Keep a fallback factor (password, magic link, support recovery) for users who cannot complete the selfie — accessibility, device camera failure, religious head covering, etc.

Read the docs:
  - https://docs.didit.me/core-technology/biometric-auth/overview
  - https://docs.didit.me/sessions-api/create-session
  - https://docs.didit.me/integration/webhooks

Start free at https://business.didit.me — sandbox key in 60 seconds, 500 verifications free every month, no credit card.
Unahitaji maelezo zaidi? Tazama nyaraka kamili za moduli.docs.didit.me →
Inatii kwa muundo

Fungua nchi mpya kwa kubofya mara moja. Tunafanya kazi ngumu.

Tunafungua kampuni tanzu za ndani, tunapata leseni, tunafanya majaribio ya kupenya, tunapata vyeti, na tunalingana na kila kanuni mpya. Ili kusafirisha uthibitishaji katika nchi mpya, geuza swichi. Nchi 220+ zinafanya kazi, zinakaguliwa na kujaribiwa kila robo mwaka — mtoa huduma pekee wa utambulisho ambaye serikali ya nchi mwanachama wa EU imemwita rasmi kuwa salama zaidi kuliko uthibitishaji wa ana kwa ana.
Soma jalada la usalama na utiifu
Sanduku la majaribio la kifedha la EU
Tesoro · SEPBLAC · BdE
ISO/IEC 27001
Usalama wa habari · 2026
SOC 2 · Type I
AICPA · 2026
iBeta Level 1 PAD
NIST / NIAP · 2026
GDPR
EU 2016/679
DORA
EU 2022/2554
MiCA
EU 2023/1114
AMLD6 · eIDAS 2.0
Inalingana na EU kwa muundo

Nambari za uthibitisho

Nambari za uthibitisho
  • ~2s
    Uthibitishaji upya wa mwisho hadi mwisho — kunasa selfie hadi uamuzi uliotiwa saini kwenye Android ya kiwango cha chini.
  • $0.00
    Kwa uthibitishaji upya, bapa. Chini ya nenosiri la mara moja la SMS ya Marekani na tiketi ya usaidizi ya kuweka upya nenosiri ya $1+.
  • 0
    Nywila za kuhadaa, misimbo ya kuhadaa, SIM za kubadilisha, viungo vya kuruka.
  • 0
    Uthibitishaji wa bure kila mwezi, milele.
Ngazi tatu, orodha moja ya bei

Anza bure. Lipa kwa matumizi. Panua hadi Biashara.

Uthibitishaji 500 bila malipo kila mwezi, milele. Lipa kadri unavyotumia kwa uzalishaji. Mikataba maalum, makazi ya data, na SLA (Mikataba ya Kiwango cha Huduma) kwenye Biashara.
Bure

Bure

$0 / mwezi. Hakuna kadi ya mkopo inayohitajika.

  • Kifurushi cha KYC cha bure (Uthibitishaji wa Kitambulisho + Uhai Usio na Kazi + Kulinganisha Uso + Uchambuzi wa Kifaa na IP) — 500 / mwezi, kila mwezi
  • Watumiaji Waliozuiliwa
  • Kugundua Marudio
  • Ishara 200+ za udanganyifu kwenye kila kipindi
  • KYC inayoweza kutumika tena kwenye mtandao wa Didit
  • Jukwaa la Usimamizi wa Kesi
  • Mjenzi wa Mtiririko wa Kazi
  • Hati za umma, sandbox, SDKs, seva ya MCP (Model Context Protocol)
  • Usaidizi wa jamii
Anza bure
Maarufu zaidi
Lipa kwa matumizi

Kulingana na Matumizi

Lipa tu kwa kile unachotumia. Moduli 25+. Bei ya umma kwa kila moduli, hakuna ada ya chini ya kila mwezi.

  • KYC kamili kwa $0.33 (Kitambulisho + Biometriska + IP / Kifaa)
  • Hifadhidata 10,000+ za AML — vikwazo, PEPs, vyombo vya habari hasi
  • Vyanzo 1,000+ vya data ya serikali kwa Uthibitishaji wa Hifadhidata
  • Ufuatiliaji wa Miamala kwa $0.02 kwa kila muamala
  • KYB ya Moja kwa Moja kwa $2.00 kwa kila biashara
  • Uchunguzi wa Wallet kwa $0.15 kwa kila ukaguzi
  • Mtiririko wa uthibitishaji wa Whitelabel — chapa yako, miundombinu yetu
Angalia orodha kamili ya beiAnza bila malipo
Biashara

Biashara

MSA & SLA maalum. Kwa idadi kubwa na programu zilizodhibitiwa.

  • Mikataba ya kila mwaka
  • MSA, DPA, na SLA maalum
  • Kituo maalum cha Slack na WhatsApp
  • Wakaguzi wa mikono kwa mahitaji
  • Masharti ya muuzaji na white-label
  • Vipengele vya kipekee na ushirikiano wa washirika
  • CSM aliyetajwa, ukaguzi wa usalama, usaidizi wa kufuata
Zungumza nasi

Anza bure → lipa tu wakati ukaguzi unafanyika → fungua Biashara kwa mkataba maalum, SLA, au makazi ya data.

FAQ

Maswali ya kawaida

Inayohusiana

Moduli zinazohusiana + mtiririko wa kazi

Miundombinu ya utambulisho na udanganyifu.

API moja kwa KYC, KYB, Ufuatiliaji wa Miamala, na Uchunguzi wa Wallet. Unganisha kwa dakika 5.

Anza bila malipoZungumza nasi
Uliza AI ifupishe ukurasa huu