Digital identity

Helping users interact with government safely and securely.

At the DTA we’re working with government agencies, the private sector and the public to design and implement a digital identity solution for Australia.

We believe that it should be safe and easy for everyone to prove who they are. This means giving people a secure option to verify their identity online rather than needing to visit an office or shopfront.

To give people a consistent and reliable experience, government needs to work closely with stakeholders under common standards and using common tools.

To achieve this, we are developing a standard for establishing digital identity. We are also assisting agencies to implement a technical solution that meets the standard.

Trusted Digital Identity Framework

The Trusted Digital Identity Framework (TDIF) provides a standard for digital identity in Australia. It aims to make sure all users have a safe and secure way to connect with government services online.

The TDIF provides the foundations for consistent, secure and reliable digital identity for everyone.

The following 10 documents make up the first component of the TDIF. They are designed to be read together and give a comprehensive overview of the standards and processes required to use or provide digital identity services.

Two future components will be added to the TDIF. These will set the standard to manage an offline option for creating a digital identity, and to authorise individuals to act on behalf of a business.

Overview and Glossary

This document provides a high-level overview of the TDIF. It outlines the relationship between the 10 documents included in the framework, and the definition of key terms.

Download the overview and glossary (PDF 630KB)

Accreditation Process

This document defines the requirements to be met by government agencies and organisations in order to achieve TDIF accreditation for their identity service.

Download the accreditation process (PDF 609KB)

Authentication Credential Requirements

This document sets out the authentication and credential requirements that government agencies and organisations need to meet to be accredited as Credential Service Providers under the TDIF.

Download the authentication credential requirements (PDF 116KB)

Fraud Control Requirements

This document sets out the TDIF fraud control requirements that government agencies and organisations need to meet in order to be accredited under the TDIF.

Download the fraud control requirements (PDF 342KB)

Identity Proofing Requirements

This document sets out the identity proofing requirements that government agencies and organisations need to meet to be accredited as Identity Service Providers under the TDIF.

Download the identity proofing requirements (PDF 536KB)

Privacy Requirements

This document sets out the TDIF privacy requirements that government agencies and organisations need to meet in order to be accredited under the TDIF. These requirements incorporate the Privacy Act 1988 and the Australian Privacy Principles, state-based privacy legislation and privacy best practice.

Download the privacy requirements (PDF 340KB)

Protective Security Requirements

This document sets out the TDIF protective security requirements that government agencies and organisations need to implement in order to be accredited under the TDIF.

Download the protective security requirements (PDF 451KB)

Risk Management Requirements

This document sets out the TDIF risk management requirements that government agencies and organisations need to meet in order to be accredited under the TDIF. This document also explains an approach to risk management that agencies and organisations can use to meet the requirements.

Download the risk management requirements (PDF 594KB)

Usability and Accessibility Requirements

This document defines the usability and accessibility requirements that government agencies and organisations need to meet in order to be accredited under the TDIF. These requirements ensure that identity services are simple and easy to use.

Download the usability and accessibility requirements (PDF 281KB)

Protective Security Reviews

This document outlines the protective security reviews that will be performed on an identity service as part of the TDIF accreditation process.

Download the protective security reviews (PDF 348KB)

Community and industry feedback

The DTA developed the TDIF in conjunction with other government agencies and key private sector bodies. We published the draft framework for public comment in November 2017. This document provides a summary of changes made to the TDIF based on the community and industry comments.

Download the feedback summary (PDF 304KB)

Other identity policies

The DTA also manages the Gatekeeper Public Key Infrastructure Framework. Gatekeeper governs the use of digital certificates by Australian Government agencies.

The TDIF replaces the following policies, and they no longer apply:

Get in touch

If you have any questions about the Trusted Digital Identity Framework or online identity verification you can email authentication@dta.gov.au