System and method for identity verification

What is claimed is: 1. A server computer comprising: a processor; and a non-transitory computer readable medium coupled to the processor, the non-transitory computer readable medium comprising code that when executed by the processor, causes the processor to: receive, from an access device, an authorization request message for an interaction between a user and a resource provider, the authorization request message comprising an access credential and an inquiry about a secure fact associated with the user, wherein the inquiry is provided in form of one or more assertion type indicators that are automatically inserted in the authorization request message based on an identifier of a good or a service provided by the resource provider, wherein the secure fact includes an identity attribute of the user; identify the one or more assertion type indicators embedded in the authorization request message based on parsing; retrieve one or more assertion values corresponding to the one or more assertion type indicators for the user from a database; obtain an answer to the inquiry about the secure fact associated with the user; embed the answer to the inquiry in the authorization request message in form of the one or more assertion values associated with the one or more assertion type indicators thereby generating a modified authorization request message; transmit the modified authorization request message to an authorizing entity computer; receive, from the authorizing entity computer, an authorization response message comprising an indicator approving or declining the interaction; and transmit, to the access device, the authorization response message comprising the indicator approving or declining the interaction, and the one or more assertion values associated with the one or more assertion type indicators to the access device. 2. The server computer of claim 1 , wherein the access credential is a credential that is used to access a secure location. 3. The server computer of claim 1 , wherein the indicator approving or declining the interaction indicates that the interaction is declined, wherein the decline is based at least upon a determination that the one or more assertion values represent failure to meet a predetermined threshold. 4. The server computer of claim 1 , wherein at least one of the one or more assertion type indicators inquire about whether the user is above a predetermined age. 5. The server computer of claim 1 , wherein the one or more assertion type indicators include a closed question that can be answered either in affirmative or negative. 6. The server computer of claim 1 , wherein a data field of the authorization request message that stores the one or more assertion type indicators is customized based on the resource provider. 7. A method comprising: receiving, by a server computer from an access device, an authorization request message for an interaction between a user and a resource provider, the authorization request message comprising an access credential and an inquiry about a secure fact associated with the user, wherein the inquiry is provided in form of one or more assertion type indicators that are automatically inserted in the authorization request message based on an identifier of a good or a service provided by the resource provider, wherein the secure fact includes an identity attribute of the user; identifying, by the server computer, the one or more assertion type indicators embedded in the authorization request message based on parsing; retrieving, by the server computer, one or more assertion values corresponding to the one or more assertion type indicators for the user from a database; obtaining, by the server computer, an answer to the inquiry about the secure fact associated with the user; embedding, by the server computer, the answer to the inquiry in the authorization request message in form of the one or more assertion values associated with the one or more assertion type indicators thereby generating a modified authorization request message; transmitting, by the server computer, the modified authorization request message to an authorizing entity computer; receiving, by the server computer from the authorizing entity computer, an authorization response message comprising an indicator approving or declining the interaction; and transmitting, by the server computer to the access device, the authorization response message comprising the indicator approving or declining the interaction, and the one or more assertion values associated with the one or more assertion type indicators to the access device. 8. The method of claim 7 , wherein the indicator approving or declining the interaction indicates that the interaction is declined, wherein the decline is based at least upon a determination that the one or more assertion values represent failure to meet a predetermined threshold. 9. The method of claim 7 , wherein at least one of the one or more assertion type indicators inquire about whether the user is above a predetermined age. 10. The method of claim 7 , wherein the one or more assertion type indicators include a closed question that can be answered either in affirmative or negative. 11. The method of claim 7 , wherein a data field of the authorization request message that stores the one or more assertion type indicators is customized based on the resource provider. 12. A method comprising: receiving, by an authorizing entity computer from a server computer, an authorization request message for an interaction between a user and a resource provider, the authorization request message comprising an access credential and an inquiry about a secure fact associated with the user, wherein the inquiry is provided in form of one or more assertion type indicators that are automatically inserted in the authorization request message based on an identifier of a good or a service provided by the resource provider, wherein the secure fact includes an identity attribute of the user; identifying, by the authorizing entity computer, the one or more assertion type indicators embedded in the authorization request message based on parsing; retrieving, by the authorizing entity computer, one or more assertion values corresponding to the one or more assertion type indicators for the user from a database; obtaining, by the authorizing entity computer, an answer to the inquiry about the secure fact associated with the user; generating, by the authorizing entity computer, an authorization response message comprising an indicator approving or declining the interaction; embedding, by the authorizing entity computer, the answer to the inquiry in the authorization response message in form of the one or more assertion values associated with the one or more assertion type indicators; and transmitting, by the authorizing entity computer, the authorization response message to the server computer for relaying to an access device. 13. The method of claim 12 , wherein the indicator approving or declining the interaction indicates that the interaction is declined, wherein the decline is based at least upon a determination that the one or more assertion values represent failure to meet a predetermined threshold. 14. The method of claim 12 , wherein at least one of the one or more assertion type indicators inquire about whether the user is above a predetermined age. 15. The method of claim 12 , wherein the one or more assertion type indicators include a closed question that can be answered either in affirmative or negative.