Trusted Digital Identity Framework (TDIF)

TDIF

The Trusted Digital Identity Framework (TDIF) is an accreditation framework for digital ID services.

It sets out the requirements that applicants need to meet to achieve accreditation.

The accreditation framework and process ensures all identity providers meet strict rules and standards for usability, accessibility, privacy protection, security, risk management, fraud control and more.

We provide guidance material and templates to support organisations to meet TDIF requirements, which can be found here.

TDIF documents

TDIF accreditation program

Government providers that offer digital ID services can apply to be accredited under the TDIF.

The Australian Government is also running a pilot accreditation program, under which private sector businesses can apply to be accredited under the TDIF to test the readiness for its use to be expanded beyond government.

Accreditation demonstrates that their digital ID services are trusted, safe and secure and built to the standards set by the Australian Government.

Accredited entities

The entities listed below have an active TDIF accreditation status.

Accredited entities operating in the Australian Government's Digital ID system:

Accredited entity	Service name	Role	Service description	Initial and variation accreditation date
ATO ABN 51 824 753 556	myGovID	Identity provider	Reusable digital identity Mobile application IP1 IP2 IP3 Biometric enabled	30 May 2019 Varied on 30 August 2021 to include IP3 and biometrics
	myGovID	Credential provider	Mobile application CL2 Multi-Factor Crypto Software	30 May 2019
	RAM	Attribute provider	Business Authorisation attributes	20 June 2019
Services Australia ABN 90 794 605 008	Exchange	Exchange provider	The exchange supports the connection of relying parties with accredited entities.	13 May 2019
Services Australia ABN 90 794 605 008	myGov	Attribute provider	myGov LinkID attributes	25 August 2021

Accredited entities operating outside the Australian Government's Digital ID system:

Accredited entity	Service name	Role	Service description	Initial and variation accreditation date
Australia Post ABN 28 864 970 579	Digital iD	Identity provider	Reusable digital identity Mobile application IP2	17 May 2019
Australia Post ABN 28 864 970 579	Digital iD	Credential provider	Mobile application CL2 Multi-Factor Crypto Software	17 May 2019
IDVerse, the trading name of OCR Labs Pty Ltd ABN 20 603 823 276	IDKit, when specifically ordered by the customer as a TDIF-accredited service and so configured, which cannot be changed.	Identity provider	One-off verification Mobile application IP1 Plus IP2 IP2 Plus IP3 Biometric enabled	8 July 2021 Varied on 7 March 2022 to include IP3 and biometrics
Mastercard ABN 95 108 603 345	ID	Identity provider	Reusable digital identity Mobile application IP1 Plus	21 July 2022
		Credential provider	Mobile application Multi-Factor Crypto Software CL2 Biometric enabled	21 July 2022
		Exchange	The exchange brokers authentication and identity requests using OpenID Connect 1.0.	10 June 2022
eftpos Digital Identity Pty Ltd ABN 80 648 970 101	ConnectID Exchange services	Exchange	The exchange provides services that convey, manage and coordinate the flow of information between participants.	15 September 2021 Varied on 5 January 2023

Roles that can be accredited

Identity providers

Identity providers help you set up and manage your Digital ID so you can prove who you are online. Using a secure Digital ID with a trusted identity provider helps keep your information safe and helps services have confidence that they’re interacting with the right person.

Identity providers can apply to be accredited at various identity proofing levels.

Identity exchanges

An identity exchange acts like a switchboard, transferring information, with your consent, between relying parties, identity providers and attribute service providers, in a way which is secure and respects your privacy.

Attribute providers

Attributes are additional information about you such as entitlements or characteristics of an individual (for example, that you have a particular qualification). Attribute providers generate and manage attributes and claims about an individual, business or organisation that are provided to relying services.

Credential providers

A credential is a password or other forms of authentication. Credential providers can generate, bind and distribute credentials to individuals or can bind and manage credentials generated by individuals. The robustness of this confidence is described by a credential level (CL) categorisation.

Applying for TDIF accreditation

Before submitting your application, we ask that you request a pre-engagement meeting with the Department of Finance by emailing digitalid@finance.gov.au, including a description of your organisation and the identity system proposed for accreditation.

Our Accreditation/Engagement team will contact you to organise a meeting which will include next steps, how to submit a formal application and when we expect to commence the next round of accreditation prioritisation.

Guidance material and templates to support organisations to meet TDIF requirements can be found here.

To become a TDIF accredited provider, applicants are required to demonstrate how their Digital ID service meets requirements for:

accessibility and usability
privacy protection
security and fraud control
risk management
technical integrity and more.

As a final step, all applicants are required to enter into an accreditation governance agreement or deed with the Department of Finance that sets out their ongoing obligations under the TDIF.

For more information about the accreditation process, go to TDIF 03 Accreditation Process.

Once accredited, providers need to continually demonstrate they meet their TDIF obligations by undergoing annual assessments. For more information, go to TDIF 07 Maintain Accreditation.