Security
Security in online identity proofing and verification, and specifically relating to GOV.UK Verify
Industry and Engagement lead, Carrie Hartnell-Grundy and Business and Risk Analyst, Aaron Cameron, talk about our joint-project with OIX to investigate how to future-proof the requirements of Element C, focusing on knowledge based verification.
GOV.UK Verify is designed to help fight the growing problem of online identity theft. Identity Advisor Julian White explains what we mean by identity fraud and describes some of the kinds of fraud GOV.UK Verify’s standards are designed to help prevent.
"Having developed the service for security and availability we then plan for disaster" - Head of Operations, Liz Sarginson, shares how we deal with incidents that affect how users' experience of GOV.UK Verify.
Over a year ago I wrote a blog post about how we protect users’ privacy when signing in to a GOV.UK service with GOV.UK Verify. In that post I gave an overview of some of the things we do to …
We need to make sure that GOV.UK Verify is protected against rapidly developing fraud and information security risks, to protect people's privacy and security. There are a range of ways we do this - this post is about the work we do …
James Stewart has published a post about how GDS decides when it's ok not to publish source code. The identity assurance programme operates within the approach outlined by James. We do publish information about our design, but we don’t publish code …
As with all the work being done under the digital transformation programme, the identity assurance programme starts with user needs. But, in this case, there are two separate and contrasting needs to consider. We thought it would be interesting to …