Skip to main content

AWS Solutions Library

Guidance for Age Verification on AWS

Overview

This Guidance helps customers streamline the age verification process when selling age-restricted items. Customers completing age verification for the first time upload a copy of their ID and an image of themselves using their device's built-in camera. AWS services verify that the image taken from the camera matches the ID provided and that the customer meets the minimum age requirement to purchase age-restricted products. 

How it works

These technical details feature an architecture diagram to illustrate how to effectively use this solution. The architecture diagram shows the key components and their interactions, providing an overview of the architecture's structure and functionality step-by-step.

Download the architecture diagram

Well-Architected Pillars

The architecture diagram above is an example of a Solution created with Well-Architected best practices in mind. To be fully Well-Architected, you should follow as many Well-Architected best practices as possible.

This Guidance does not include code artifacts, enabling you to automate development pipelines using AWS Cloud Development Kit (AWS CDK) v2, AWS CloudFormation, and Terraform for fast iteration and consistent deployments. Observability is built-in to the recommended services with process level metrics, logs, and dashboards. Extend these mechanisms to meet your needs, and create alarms in Amazon CloudWatch to inform your on-call team of any issues.

Read the Operational Excellence whitepaper 

If you use Amazon Virtual Private Cloud (Amazon VPC) to host your AWS resources, you can establish a private connection between Amazon VPC and Amazon Rekognition and keep all the traffic private. By using a restricted execution role and trust policies between services, you can configure the backend Step Functions state machine to limit the access to just the services you need. Extend the security of the backend with AWS WAF, a web application firewall. Secure your frontend application further with fine-grained traffic filtering for unwanted traffic.

Read the Security whitepaper 
The Serverless technologies make all components in this Guidance highly available. All components scale automatically because the Amazon Rekognition limits are configured based on your needs. 

Read the Reliability whitepaper 

Serverless technologies allow you to provision only the exact resources you use. You can test with multiple media types to maximize the performance of Amazon Rekognition. For improved performance for clients, deploy Amazon Rekognition in a multi-region architecture and consider implementing the Amazon Route 53 routing policy to further improve the end-user experience.

Read the Performance Efficiency whitepaper 

The cost of this Guidance is minimized by using serverless technologies and because Amazon Rekognition automatically scales based on demand, ensuring only the minimum resources are required.

Storage in Amazon S3 follows a consumption-based pricing model where you pay only for resources you use. 

Read the Cost Optimization whitepaper 

By using managed and serverless services, you can minimize the environmental impact of the backend services. A critical component for sustainability is to maximize the usage of the AWS services such as Amazon Rekognition, as covered in the Performance Efficiency and Cost Optimization pillars.

Read the Sustainability whitepaper 

Disclaimer

The sample code; software libraries; command line tools; proofs of concept; templates; or other related technology (including any of the foregoing that are provided by our personnel) is provided to you as AWS Content under the AWS Customer Agreement, or the relevant written agreement between you and AWS (whichever applies). You should not use this AWS Content in your production accounts, or on production or other critical data. You are responsible for testing, securing, and optimizing the AWS Content, such as sample code, as appropriate for production grade use based on your specific quality control practices and standards. Deploying AWS Content may incur AWS charges for creating or using AWS chargeable resources, such as running Amazon EC2 instances or using Amazon S3 storage.