More on the "Identity Assurance programme "

William Heath wmheath at
Tue Nov 1 14:59:24 GMT 2011

It's not a subset of G Digital, though they were briefly linked before the

This flame has been carried since well before the election by a lone
official called David Rennie, who was secretary to the James Crosby review.
It precedes NSTIC but is pretty consistent with it. It has by default been
largely industry driven because until this week it had zero resources.

The big outstanding questions for me are

- will the "ID providers" thrive as a separate new business or simply merge
into the other sorts of verification service (because verifying a name or
an account number is no different from verifying any other attribute)

- will organisation in future  speak directly unto organisation when
verifying something about an individual (cf DVLA tax disk) or will this be
done via the individual, who will in future acquire and redeploy a range of
tokens or proofs (as has happened for centuries). The latter course implies
a degree of new structure and capability at the individual's end (I declare
an interest and Mandy Rice-Davies' famous quote applies).

I asked that question at the launch. Initially the answer was the former;
this was later clarified to the latter.

IMHO the whole programme is a misnomer. It's really about attribute or
claims verification.


On 1 November 2011 11:39, Anish Mohammed <anish.mohammed at> wrote:

> Hi Peter,
>  I would have assumed this to be reincarnation of identity assurance
> program, previous government had. This time being run by (most likely )
> private entity. Being given access to various government data sets on
> individuals to provide a score. I would assume most data sets to be IL3 ...
> I have to admit I haven't followed G-digital that much. My perspective of
> this is as, Identity as a service.
> Regards
> Anish
> Anish Mohammed
> Twitter: anishmohammed
> On 1 Nov 2011, at 06:27, Peter Tomlinson <pwt at> wrote:
> > Once again, this is only about securing access to public sector web
> sites and services, not an open project (cf USA NSTIC programme).
> >
> > I'm facing here a discontinuity between this new material and the
> previous G-Digital project reports, but that's probably because for
> personal reasons I have been occupied elsewhere for over a month. Can
> anyone explain if this programme is an evolution of G-Digital (which
> appeared to have only Cabinet Office and DoH involved when I last looked)?
> >
> > Peter
> >
> > On 01/11/2011 01:32, Chris Salter wrote:
> >> Hello UKCrypto,
> >>
> >> Cabinet Office Press Release:
> >>
> >> Francis Maude promises £10 million in funding for Digital by Default
> delivery programme.
> >>
> >> Opening Paragraphs.
> >>
> >> As part of the Government's commitment to delivering world-class
> digital products, today the Minister for Cabinet Office Francis Maude
> announced the Identity Assurance programme would be receiving an extra £10
> million in funding.
> >>
> >> The Identity Assurance programme deals with the way a service provider
> can be assured that the customer or user is who they say they are as they
> access Government services.
> >>
> >> Francis Maude made the announcement at the 'Ensuring Trusted Services
> with the new Identity Assurance Programme' event. Speaking to heads of
> leading UK technology firms he updated them on the Identity Assurance
> programme and issued a call to action for companies to work with the UK
> Government to develop solutions for the project.
> >>
> >> End Quote.
> >>
> >>
> >> or
> >>
> >>
> >
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the ukcrypto mailing list