Today we are happy to announce an exciting new phase in the Identity Assurance Programme as we develop user-focused identity services for exemplar transactions as part of the transformation of government digital services. Five of the Identity Providers on the cross-government identity assurance framework (Digidentity, Experian, Mydex, The Post Office, and Verizon) have now signed contracts to deliver our first live services.
Identity assurance is about providing users with a simple, trusted and secure means of accessing public services, so we are working hard to ensure that privacy is at the heart of the service we will provide to users.
The Identity Assurance Privacy and Consumer Advisory Group (PCAG) was established to help the government develop an approach to identity assurance that, among other things, ensures users are in control of their information, that information is not centralised and that users have a choice of who provides services on their behalf.
Last year we published the first draft of the PCAG’s principles. The principles set out, in detail, how the government’s identity assurance (IDA) approach could be configured to meet the privacy and consumer expectations of its users. The government will continue to work closely with PCAG, our private sector partners and users to explore how these principles can be met in practice.
Today we are publishing an updated version of the PCAG’s principles for further feedback and comment. We will also arrange workshops to discuss the principles and to increase awareness of the important issues they raise and seek to address.
On Friday (31 May) we published a new version of the Good Practice Guide (GPG) 45 – Identity Proofing and Verification of an Individual. It can be found on the Cabinet Office site together with the full set of previously released guides.
This guide sets out the basic requirements for proving an individual’s identity and forms the basis for delivering trusted, online government transactions.
Identity Assurance is made up of many different areas of work, as you’d expect of a complex programme. Whether they’re focused on business processes, security, commercial models, government standards or anything else, they all share the common goal of producing results that are actually fit for purpose. And the only effective way to ensure that is to test – continually – with real people in real situations. This helps us to learn what works and, just as importantly, what doesn’t.
There’s been a fair amount of speculation as to who else would join the supplier framework for Identity Assurance. We are happy to confirm that the eighth successful supplier is PayPal.
As a founder member of the Open Identity Exchange (OIX) which provides a structured conversation between the Cabinet Office on behalf of the UK Government and a market of providers committed to interoperability, PayPal adds their high profile and expertise in the online transacting space. They join the recently announced suppliers that includes The Post Office, Cassidian, Digidentity, Experian, Ingeus, Mydex, and Verizon.
Of course, this is just the beginning of the process. The real work of realising our ambitions for identity assurance services can now begin. We’re working closely with departments to develop an identity assurance process that can be adapted and reused right across government, benefiting users and and service providers alike with a simpler, faster, better and safer way to access and transact with government services.
There’s a group of people here at GDS working on a programme called IDA – which stands for Identity Assurance. We’re helping develop a secure service that lets people log in to online government services more easily. (more…)
On Tuesday, 12th June, Mike Bracken announced that the Cabinet Office will be joining the Open Identity Exchange (OIX). The Identity Assurance Programme team explain how this will enhance a process of collaboration and inform ongoing, small-scale, alpha projects.