The Australian Government Digital Identity System is delivered by a number of organisations who work together to provide a safe, secure and convenient way to prove who you are online.
Right now, the System is delivered by Services Australia, the Australian Taxation Office, Home Affairs and the Digital Transformation Agency and is used by many government services to verify their users.
See Future participation for information on private sector participation in the System.
How the System works
This System is based on the core principles:
- Privacy – the System needs consent at every step, with Privacy Impact Assessments conducted throughout.
- Security – participants must be TDIF accredited and require ongoing assessment. Security is embedded in the design of the System. So far there have been 4 iterations of TDIF developed in consultation with stakeholders.
- Integrity – the System is governed by an Interim Oversight Authority responsible for operational system assurance, so that the System is used as intended.
Guided by lessons learned from other countries, the System:
- is optional
- is a network of trusted and accredited organisations
- has a government identity provider
- is able to biometrically bind identities where needed
- will be able to represent a whole-of-economy solution in the future.
Accredited participants and relying services
The Australian Government Digital Identity System includes 4 types of accredited participants:
Identity providers - help you set up and manage your Digital Identity. If you choose to create and use a Digital Identity, then your identity provider will be your gateway into the Australian Government Digital Identity System. The Face Verification Service and Document Verification Service may be used by your identity provider as a way to verify your identity online. myGovID is the Australian Government's Digital Identity provider. More identity providers will be onboarded as the System develops.
Attribute providers - verify specific attributes relating to entitlements or characteristics of an individual (for example, that you have a particular qualification). The ATO’s Relationship Authorisation Manager (RAM) is an example of an attribute provider.
Credential providers - play a critical role in keeping the System secure and safe. They take care of credentials such as passwords and other forms of authentication used in the System.
Identity exchange - acts like a switchboard, transferring information, with your consent, between relying parties, identity providers and attribute service providers, in a way which is secure and respects your privacy.
Relying services participate in the Australia Government Digital Identity System by providing online services to people with a Digital Identity. Relying services are not accredited under TDIF and are currently limited to government agencies. Pending the passage of legislation, the System will expand to allow for private sector and state and territory government relying services to participate in the Digital Identity System.
The Australian Government is allowing a number of state and territory government agencies to participate in the Australian Government Digital Identity System on a pilot basis as a part of our testing of the readiness of the Australian Government Digital Identity System to expand beyond the Australian Government.