enabling-new-services

Convergence of Digital Identity Policies Will Enable Next Generation Services

December 1, 2016

Blog

Marta Ienco, Head of the Government & Regulatory affairs, Personal Data  

marta-ienco-headshot-v2That the future of public services is digital is becoming increasingly apparent in Europe and internationally. Italy, for example, has launched its nationwide Public System for Digital Identity Management, or SPID, which facilitates faccess to e-government and public services by citizens and companies alike and will be available across multiple computing platforms. SPID has already been adopted by many of the nation’s universities and 3,300 municipalities, while all of Italy’s public administrations are due to offer SPID-based services by the end of the year. Finland’s government is acting in concert with mobile operators to encourage wholesale migration of services online, driving uptake in a country where more than 90% of the population have both a mobile device and internet access. In the UK, the government’s GOV.UK Verify initiative verifies  identity through certified companies, enabling citizens to access a variety of public services such as welfare applications, tax returns and reporting medical conditions. Perhaps the most striking example at present is Estonia which, by issuing every citizen with an eID at birth, has been able to offer fully 99% of its public services online. Consequently, hospital queues have dropped by a third, and police work has become a staggering fifty times more efficient.

These are just a few of the national identity initiatives that have sprung in Europe over recent years. But there are also a number of pan-European regulations designed to accelerate the uptake of digital identity services amongst Member States.  One such milestone is the EU eIdentification and Trust Services (eIDAS) Regulation which enables citizens and businesses to use national digital identity solutions to access public services in other EU countries. The revised Payment Services Directive (PSD2) also opens up multiple opportunities for third parties – such as Mobile Network Operators – to provide identity attributes and authentication in the payments space. Importantly, PSD2 aims to mandate for secure strong customer authentication, which will improve consumers’ protection for online payments and that mobile operators are in a good position to deliver seamless and without frictions.

There remains, however, much to be done to bring this digital future into being across Europe. For public sector services, in October, the European Commission published the e-Government Report for 2016, its benchmarking survey on the state of digital services across the EU. It finds that while 81% of services in EU countries are now available online, growth across member states is highly uneven, with a significant number lagging behind in adoption and quality. Crucially, a lack of mobile-readiness in e-government services has proved a barrier to accessibility. The report finds that, while the use of mobile devices to access the internet has taken off in earnest over the last five years, “still only 1 in 3 public websites is ‘mobile-friendly’.”

The implications for efficiency are discouraging. For instance, the number of e-government services using simple authentication services as databases to pre-fill online forms has grown by only 2%, bringing the total to still less than half, at 49%. Cross-border services were shown to inhibit business mobility, with 25% of those required by foreign entrepreneurs being wholly offline, requiring a physical encounter for completion. The number of automated services was found to be wholly static, remaining stable at 3% of all services since the first measurement. The authors therefore urge “an acceleration in order to keep up with private sector, and citizens’ expectations”. As was made clear in the report’s findings, digital identity is a key enabler for both public and private sector services but is not yet being used to its full potential.

The need for harmonisation of standards in digital identity is recognised beyond Europe. National eID initiatives have been brought forward in Canada, India, Australia and New Zealand; the direction of travel is clear, but for the journey to be completed, users’ expectations must be met in a coherent way both within and between national contexts.

In early November, the 54th session of the United Nations Commission on International Trade Law (UNCITRAL) Working group IV on Electronic Commerce in Vienna, building on the preparatory work of the its first colloquium, reached broad consensus on the fundamental importance of addressing the legal issues for identity management and trust services for electronic transactions, with the aim of improving international trade and commerce by removing legal obstacles and enabling international cross-border interoperability

The National Institute of Standards and Technology (NIST) in the US is also reviewing two important public consultations. One on Developing Trust Frameworks to Support Identity Federations, and a more extensive special publication guiding the industry on Digital Authentication. This resource aims to facilitate agreements between communities in the development of federated identity frameworks – and thereby accelerate the pace of digitisation in services through enhanced public trust in their security – through four guiding principles concerning privacy, security, interoperability and accessibility. Indeed, these criteria seem to be the bedrock for many national ID schemes, and are providing the basis for which the private sector can develop solutions that can work on a global scale.

One such solution developed by the private sector, Mobile Connect, is well-placed to aid this growing move towards harmonisation on a global scale. Its design, for example, is in accordance with the relevant guiding principles set out by NIST, eIDAS and PSD2. Last year, Mobile Connect was successfully trialled in cross-border authentication for public sector services. The trial was the first of its kind to be fully compatible and in line with eIDAS Regulation and was applauded for its successful results.

Because Mobile Connect gives the user control of who they share their data with, it maintains the maximum level of privacy that can be afforded to the user. And as an operator-led solution, it places data in the hands of those best-able to monitor and identify potentially fraudulent activity. The GSMA report ‘Mobile Connect: Mobile High-Security Authentication’, explains how Mobile Connect can deliver improved security and privacy for consumers authenticating themselves online and authorising digital transactions, and how the solution will evolve in future.

As the demand for digital services grows, private sector service providers and governments will increasingly feel the need for an interoperable identity solution that can be used securely and conveniently anywhere on the globe. Mobile Connect’s utilisation of a mobile, the piece of technology the vast majority carry on them as a matter of course, offers as much convenience and accessibility as can be hoped for.

Back

SIM Toolkit Device Requirements to Improve Mobile Connect Customer Exp This document presents the requirements for the device to improve the user experience of the Mobile Connect SIM applet authenticator. The ETSI (The European Telecommunications St...

Read more | See all Personal Data Resources

Mobile Connect demonstrations As Mobile Connect advances, more examples of its uses continue to emerge. These two videos are the latest demonstrations of Mobile Connect in action. The first illustrates how Mo...

Read more | See all Personal Data Resources

Mobile Connect: mobile high-security authentication This non-technical paper is designed to address security questions related to authentication, especially with respect to payments, banking and online commerce. It explains how Mo...

Read more | See all Personal Data Resources

Telco’s mobile based digital authentication and identity in digital This report was produced by Deloitte India for the August edition of Communications Today. An estimated 650 million people will be online in India by 2020, with the mobile phone...

Read more | See all Personal Data Resources

How Mobile Connect Can Transform Digital Banking Consumers like the convenience of being able to bank and transact online using a PC, tablet or smartphone. However, the available authentication procedures involving multip...

Read more | See all Personal Data Resources

Mobile Connect – Indian Overview Mobile Connect is now available to more than 800 million consumers across India. Mobile network operators (MNOs) offering Mobile Connect services are Aircel, Bharti Airtel, Idea,...

Read more | See all Personal Data Resources

Mobile Connect Government & Policy Expert Named in List of top 10 The GSMA’s Marta Ienco, Head of Government and Regulatory Affairs for Personal Data, has been named by identity experts, One World Identity, in their list of top 100 leaders in...

Read more | Visit Personal Data Blog

2016: The Year Mobile Connect Became Available to a Third of the World Marie Austenaa, VP and Head of Personal Data & Mobile Identity, GSMA One of the most noticeable trends in 2016 was the growing preoccupation with hacking, data breaches and t...

Read more | Visit Personal Data Blog

Household Credit Sharing App the Victor at Visa Hackathon Dubai—When asked to imagine a thriving industry in the Middle East, most of us will immediately think of oil. But in recent years, the region’s economy has diversified, breat...

Read more | Visit Personal Data Blog

Convergence of Digital Identity Policies Will Enable Next Generation S Marta Ienco, Head of the Government & Regulatory affairs, Personal Data   That the future of public services is digital is becoming increasingly apparent in Europe and inter...

Read more | Visit Personal Data Blog

The Evolution of Online Banking Marie Austenaa, VP and Head of Personal Data & Mobile Identity Programme at GSMA In April this year, the World Retail Banking Report from Capgemini reported significant impro...

Read more | Visit Personal Data Blog

The Relationship Between Blockchain and Digital Identity Gautam Hazari, Technical Director, Personal Data, GSMA ‘Identity’ is a word often used to mean subtly different things.  The Oxford English Dictionary defines it succinctly...

Read more | Visit Personal Data Blog

Mobile World Congress 2017 February 27, 2017 Mobile Connect will be present at this year’s Mobile World Congress 2017  – the world’s biggest mobile event.  The digital identity solution will be featured ...

Read more | See all Personal Data Events

Mobile Connect: delivering global mobile identity services February 27, 2017 Mobile Connect, the mobile industry’s secure digital identity service, is gaining momentum.  Operators in many countries are now collaborating to offer country-wide identity s...

Read more | See all Personal Data Events

Mobile Connect: the evolving landscape for high security authenticatio February 28, 2017 Secure authentication increasingly underpins the future prosperity and economic viability of online services and transactions. This seminar will bring together experts from mobil...

Read more | See all Personal Data Events

Mobile Connect: how global brands are protecting consumers and reducin March 01, 2017 Mobile Connect has a key role to play in combating fraud and ensuring consumers are able to log into digital services safely and securely. In an era of unprecedented fraud and te...

Read more | See all Personal Data Events

Contact GSMA Legal Email Preference Centre Copyright © 2017 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.