DOCSLIB.ORG

Digital Identity Toolkit Section 4: Case Studies

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Digital Identity Toolkit Section 4: Case Studies Digital Identity Toolkit Section 4: Case studies Published by the Social Purpose Team at Yoti June 2020 What is this Contents Toolkit? Introduction 08 How people are using digital identities around the world 14 Government case studies 16 Digital identity is a relatively new can understand. We hope this Toolkit Government administration 21 but rapidly evolving sector that can can help close that gap. and will affect many aspects of our Addressing social challenges 22 everyday lives. This Toolkit has been designed to help you find everything you need Digital identities verify and to know about digital identity. Education 23 authenticate someone’s identity. Before producing it, we spoke with They can then be used to access individuals and non-profits around a wide range of services and the world to get a sense of what Health 24 opportunities, from health and they’d like to know about digital education services, voting and identities. Healthcare and food assistance 26 travelling, through to online shopping The audience for this Toolkit are and dating. Governments and Agriculture 28 the private sector are developing members of the public, non-profits, and implementing digital identity entrepreneurs, developers, journalists solutions, and they’re likely to become and academics who want to learn Lands and assets registration 30 increasingly common in the future. more about digital identity and how digital identities might be relevant to While there is already a lot of them in their lives or work. Digital ID solutions for refugees 32 information on this topic, much of it is in lengthy, technical reports that We hope you find this Toolkit helpful Yoti key in areas of crisis 34 hasn’t been collated into a simple and welcome your feedback about how it could be improved. format that non-technical people Private sector case studies 36 Retail 39 Travel 40 Online dating 42 Accessing financial services 45 Due diligence for regulators and financial institutions 49 Further reading 53 Digital Identity Toolkit - Section 3: Digital identity explained Summary Section 3 described what a digital identity is, the different Public and private sector national identity use types of digital identity and why digital identity matters. This Section aims to bring everything we’ve shared so far India has the world’s largest national digital identity system, to life by giving real world examples of how governments, known as Aadhaar. It has over 1.2 billion users and relies charities, NGOs and the private sector use digital identities on biometric data for validation. Citizens use it to access in different ways around the world. government services, and financial providers can use it to undertake due diligence. It can be used to open a bank First we look at examples of how people use digital identities account, file tax returns, receive a pension or receive other to make their lives easier. Ella uses hers to enter nightclubs government subsidies. and office buildings, order online prescriptions and access a whole range of sites online, while Michael plans to relocate In Canada, SecureKey Concierge relies on authentication by abroad and uses his to open a local bank account and rent financial institutions to enable citizens to access dozens of an apartment. Rahul uses his to protect himself from fraud, government services. while Anya uses her digital identity to apply for financial assistance from the state. Digital identities are also used to improve government administration. In Japan, a cloud-based system enables national and local public agencies to seamlessly track and share information. In Singapore, the Moments of Life Accessing government services initiative bundles government services and information. It uses data to anticipate citizens’ specific needs as they reach Governments across the world are developing or deploying key life moments, such as marriage or the birth of a child. digital ID solutions which help citizens access public and, in some instances, private services. The UK’s GOV.UK Verify service enables citizens to access public services, while e-Estonia is renowned as the most highly-developed national ID card system in the world, covering over 90% of the population. It allows citizens to access any public e-service, reduces bureaucracy and speeds up the process of many daily tasks. It can be used for banking, signing documents, obtaining digital medical prescriptions or for business operations. Digital Identity Toolkit - Section 4: Case studies 5 Addressing social challenges Private sector case studies Digital identity can address a whole range of social The private sector is also building solutions that aim to challenges. Many countries are now registering births give customers safe and efficient access to public and digitally. This is a critical type of digital identification as birth financial services. Examples include NemID in Denmark, registration is often the gateway to accessing services, such BankID in Norway and Sweden, and TUPAS in Finland. In as health and education, throughout life. iCivil in Burkina the Caribbean, Juvo’s Flow Lend solution enables Cable & Faso is an example of this. Wireless prepaid mobile customers to establish a financial (functional) identity, which gives customers access to airtime In India, Aadhaar is used in the education system to access credit. student scholarships, online courses and to track attendance. In Pakistan, computerised national identity cards are used for In the retail sector, Komplett, one of Europe’s biggest e-trade cash transfers, voting rights and opening bank accounts. companies, uses the Signicat digital identity platform for rapid online payments, and in China customers can pay for Digital identification is also improving health outcomes their online shopping at Alibaba’s or at KFC restaurants by globally. Botswana uses digital national identification scanning their fingerprints, or through facial recognition. numbers to track adherence and adverse reactions to antiretroviral therapy in patients with HIV across the The United Arab Emirates has released a digital smart wallet country’s decentralised health facilities. Thailand has a app to replace paper-based travel identity documents such digitised national population register and digital personal as passports, and the government is creating a ‘biometric identification numbers for the successful implementation border’ which will use facial recognition scanners to verify a of a universal coverage scheme, guaranteeing subsidised traveller’s identity. healthcare to all citizens. It is also used to track vaccinations, produce vital statistics that guide public health policy and to Financial institutions and regulators also use digital IDs to monitor health system performance. undertake due diligence. For example, Global Legal Entity Identifier Foundation is working to create a standardised Digital identification is used in the agricultural sector, too. global view of legal entities, and in Spain a consortium of Nigeria and Estonia have digitised agricultural subsidies, and banks uses a blockchain platform to create digital identities in Malaysia land registration is digitised and uses fingerprint designed to counter money laundering and boost KYC readers to reduce fraud. Farmers also have unique digital (know your customer) efforts. profiles which can be used to track market attendance and receive extension services. Uruguay has implemented a digital livestock traceability system. Uganda has created a web-based refugee information management system to issue ID cards to refugees so they can access special entitlements, including discounted education and healthcare. Jordan, Lebanon and Egypt use a digital refugee assistance information system to monitor and coordinate humanitarian aid. This is an inter-agency tool for tracking assistance, referrals and assessment information. Yoti has developed an offline system for smartphones and tablets that can assign a refugee or internally displaced person with a digital identity, which can then be used to access humanitarian services. Digital Identity Toolkit - Section 4: Case studies 7 Introduction Section 3 helped define digital programmeme to help them adjust Strong ID can also support financial on liquified petroleum gas (LPG) identity, shared some of the different to civilian life. Following iris scans, inclusion. In Kenya, bank, mobile cylinders with direct bank transfers. types of digital identity, and explained 110,000 received an ID card and a and micro-finance account holders why digital identity matters. This PIN, which they could use to collect are identified by their national Robust ID credentials can also section aims to bring more of this 13 monthly cash payments from over ID numbers. Negative and (more facilitate free movement of people information to life by giving you 8,000 airtime sales agents. In rural recently) positive credit histories across Africa’s numerous borders examples about how governments, areas, where distribution through are shared across the system. Non- without compromising security. The charities, NGOs and the private vendors proved difficult, mobile financial entities, such as utility 15 ECOWAS member states are taking sector use digital identities around the teams delivered cash using only iris companies, may also participate on a the lead. The community plans to world. scans for identification. reciprocal basis. The result has been launch a biometric ID card to serve a sharp fall in the number of non- as a travel document in the region. We’ll dip into
Load more

Recommended publications
  • 2020 Identity Theft Statistics | Consumeraffairs
    2020 Identity Theft Statistics | ConsumerAffairs Trending Home / Finance / Identity Theft Protection / Identity theft statistics Buyers Guides Last Updated 01/16/2020 News Write a review 2020Write a review Identity theft statistics Trends and statistics about identity theft Learn about identity theft protection by Rob Douglas Identity Theft Protection Contributing Editor In 2018, the Federal Trade Commission processed 1.4 million fraud reports totaling $1.48 billion in losses. According to the FTC’s “Consumer Sentinel Network Data Book,” the most common categories for fraud complaints were imposter scams, debt collection and identity theft. Credit card fraud was most prevalent in identity theft cases — more than 167,000 people reported a fraudulent credit card account was opened with their information. Identity theft trends in 2019 In the next year, the Identity Theft Resource Center (ITRC) predicts identity theft protection services will primarily focus on data breaches, data abuse and data privacy. ITRC also predicts that https://www.consumeraffairs.com/finance/identity-theft-statistics.html 2020 Identity Theft Statistics | ConsumerAffairs consumers will become more knowledgeable about how data breaches work and expect companies to provide more information about the specific types of data breached and demand more transparency in general in data breach reports. Cyber attacks are more ambitious According to a 2019 Internet Security Threat Report by Symantec, cybercriminals are diversifying their targets and using stealthier methods to commit identity theft and fraud. Cybercrime groups like Mealybug, Gallmaker and Necurs are opting for off-the-shelf tools and operating system features such as PowerShell to attack targets. Supply chain attacks are up 78% Malicious PowerShell scripts have increased by 1,000% Microsoft Office files make up 48% of malicious email attachments Internet of Things threats on the rise Cybercriminals attack IoT devices an average of 5,233 times per month.
    [Show full text]
  • Suspect Until Proven Guilty, a Problematization of State Dossier Systems Via Two Case Studies: the United States and China
    University of Pennsylvania ScholarlyCommons Publicly Accessible Penn Dissertations Fall 2009 Suspect Until Proven Guilty, a Problematization of State Dossier Systems via Two Case Studies: The United States and China Kenneth N. Farrall University of Pennsylvania, [email protected] Follow this and additional works at: https://repository.upenn.edu/edissertations Part of the Asian Studies Commons, Communication Technology and New Media Commons, International and Intercultural Communication Commons, and the Social Influence and oliticalP Communication Commons Recommended Citation Farrall, Kenneth N., "Suspect Until Proven Guilty, a Problematization of State Dossier Systems via Two Case Studies: The United States and China" (2009). Publicly Accessible Penn Dissertations. 51. https://repository.upenn.edu/edissertations/51 This paper is posted at ScholarlyCommons. https://repository.upenn.edu/edissertations/51 For more information, please contact [email protected]. Suspect Until Proven Guilty, a Problematization of State Dossier Systems via Two Case Studies: The United States and China Abstract This dissertation problematizes the "state dossier system" (SDS): the production and accumulation of personal information on citizen subjects exceeding the reasonable bounds of risk management. SDS - comprising interconnecting subsystems of records and identification - damage individual autonomy and self-determination, impacting not only human rights, but also the viability of the social system. The research, a hybrid of case-study and cross-national comparison, was guided in part by a theoretical model of four primary SDS driving forces: technology, political economy, law and public sentiment. Data sources included government documents, academic texts, investigative journalism, NGO reports and industry white papers. The primary analytical instrument was the juxtaposition of two individual cases: the U.S.
    [Show full text]
  • The Scoring of America: How Secret Consumer Scores Threaten Your Privacy and Your Future
    World Privacy Forum The Scoring of America: How Secret Consumer Scores Threaten Your Privacy and Your Future By Pam Dixon and Robert Gellman April 2, 2014 Brief Summary of Report This report highlights the unexpected problems that arise from new types of predictive consumer scoring, which this report terms consumer scoring. Largely unregulated either by the Fair Credit Reporting Act or the Equal Credit Opportunity Act, new consumer scores use thousands of pieces of information about consumers’ pasts to predict how they will behave in the future. Issues of secrecy, fairness of underlying factors, use of consumer information such as race and ethnicity in predictive scores, accuracy, and the uptake in both use and ubiquity of these scores are key areas of focus. The report includes a roster of the types of consumer data used in predictive consumer scores today, as well as a roster of the consumer scores such as health risk scores, consumer prominence scores, identity and fraud scores, summarized credit statistics, among others. The report reviews the history of the credit score – which was secret for decades until legislation mandated consumer access -- and urges close examination of new consumer scores for fairness and transparency in their factors, methods, and accessibility to consumers. About the Authors Pam Dixon is the founder and Executive Director of the World Privacy Forum. She is the author of eight books, hundreds of articles, and numerous privacy studies, including her landmark Medical Identity Theft study and One Way Mirror Society study. She has testified before Congress on consumer privacy issues as well as before federal agencies.
    [Show full text]
  • Using Big Data Analytics to Fight Identity Fraud
    Primary IDA Color Palette Secondary Color Palette - Medium R122 R247 R0 R0 R154 R250 R47 R165 G134 G143 G53 G114 G155 G187 G163 G194 B142 B30 B95 B156 B157 B119 B255 B218 Gray Orange Navy Blue Blue Using Big Data Analytics Gray Orange Navy Blue Blue R106 R84 R102 R191 R42 R147 R165 R216 G154 G148 G49 G191 to Fight Identity Fraud G197 G201 G113 G216 B194 B63 B144 B191 B255 B129 B206 B216 Light Blue Green Purple Light Gray Light Blue Green Purple Light Gray Dr. Stephen Coggeshall Chief Analytics and Science Officer ID Analytics/Lifelock 2nd Workshop of Mission-Critical Big Data Analytics Prairie View, May 16,17 A Symantec Company © 2017 ID Analytics, Inc. Confidential Primary IDA Color Palette Secondary Color Palette - Medium R122 R247 R0 R0 Outline R154 R250 R47 R165 G134 G143 G53 G114 G155 G187 G163 G194 B142 B30 B95 B156 B157 B119 B255 B218 Gray Orange Navy Blue Blue Gray Orange Navy Blue Blue • All about identity fraud R106 R84 R102 R191 – modes R42 R147 R165 R216 G154 G148 G49 G191 G197 G201 G113 G216 B194 B63 B144 B191 B255 B129 B206 B216 – examples Light Blue Green Purple Light Gray Light Blue Green Purple Light Gray • Using big data analytics to catch identity fraud – a look into our technology © 2017 ID Analytics, Inc. Confidential 2 One column Primary IDA Color Palette Secondary Color Palette - Medium ID Analytics Overview R122 R247 R0 R0 R154 R250 R47 R165 G134 G143 G53 G114 G155 G187 G163 G194 B142 B30 B95 B156 ID Analytics applies advanced analytics to a unique sources of U.S.
    [Show full text]
  • The First Paper Presents the Results of a Joint Study Undertaken by Staff At
    NONBANKS IN THE PAYMENTS SYSTEM: INNOVATION, COMPETITION, AND RISK— A Conference Summary By Richard J. Sullivan and Zhu Wang∗ From the early days of automated card sorting to the more recent times of the Internet and check imaging, payments and payments processing have continually embraced new technology. At the same time, the industry has been shaped by its share of entry and exit, through startups, mergers, and the reorganization of businesses seeking the proper scope of horizontal and vertical integration. Many of these changes have introduced new risks to payments. In response, public policy has evolved to help manage these risks. These changes have enabled nonbank organizations to play a larger role in the payments system. Nonbanks have followed a number of pathways to more prominence: purchasing bank payment processing subsidiaries, carving out niches in the payments market through innovation, and taking advantage of economies of scale made possible by shifting to electronic forms of payment. The contributions of nonbanks are undeniable. They have introduced some of the most far-reaching innovations to the payments system in recent years, leading to greater efficiencies in payments processing. At the same time, nonbanks have changed the dynamics of competition in payments, leading to a significant change in the system’s risk profile. The Federal Reserve Bank of Kansas City sponsored a conference on nonbanks in the payments system in Santa Fe, N.M., on May 2-4, 2007. The conference addressed many of the key questions raised by the growing presence of nonbanks in payments. Have recent payments innovations been more likely to come from nonbanks? Have nonbanks improved or harmed competition in payments? Have nonbanks increased risk or helped to develop tools to manage it? ∗ Richard J.
    [Show full text]
  • Member Guide
    Table of Contents Welcome....................................................................................................................... 1 Consumer Services Student Loan Solutions ................................................................................................ 3 Credit Monitoring .......................................................................................................... 4 ID Theft & Fraud Resolution ........................................................................................ 5 Legal Advice ................................................................................................................. 6 Financial Advice............................................................................................................ 6 Online Legal Resource Center ..................................................................................... 7 Tax Preparation/Consultation ....................................................................................... 9 Terms & Conditions................................................................................................ 10-11 Phone Directory .......................................................................................................... 12 1 Welcome CONGRATULATIONS! Thank you for selecting the Student Assist Plus benefits plan and joining the thousands of other individuals that rely on our professional team to help them save money. Our valuable membership plan provides exclusive offers & savings on services such as: • Student
    [Show full text]
  • Identity Theft Protection Summary
    ROCHESTER INSTITUTE OF TECHNOLOGY Identity Theft Protection Table of Contents Introduction ...........................................................................................................................................................2 Important Note About Passwords .....................................................................................................................2 General Information ..............................................................................................................................................2 Who is Covered and When ..............................................................................................................................2 You Need to Enroll ...........................................................................................................................................3 Proof of Eligibility for Family Members .............................................................................................................3 Open Enrollment ..............................................................................................................................................4 Election Changes During the Plan Year ...........................................................................................................4 Who Pays For This Protection ..........................................................................................................................4 What the Identity Theft Protection Benefit Covers ................................................................................................5
    [Show full text]
  • Identity Theft Glossary
    Identity Theft Glossary •Account takeover: An account takeover is when a fraudster uses personal information to ​ ​ obtain products and services. Credit card fraud is the most rampant, but skimming and phishing are also common types of account takeovers. •Anti-virus: Anti-virus software runs continuously in the background of a computer and ​ ​ scans for viruses, worms and malware every time the user accesses a website or downloads anything. •Bait and switch: A bait and switch attack is when a hacker buys advertising space on a ​ ​ webpage and then links the advertisement to a page infected with malware. •Black hat hacker: All hackers are capable of compromising computer systems and creating ​ ​ malware, but black hat hackers use these skills to commit cybercrimes. •Blockchain: A blockchain is a string of time-stamped digital records shared between ​ ​ multiple computers. If the data in one block changes, all subsequent blocks in the blockchain reflect the alteration and become invalid. Blockchains help prevent identity theft and fraud by making it difficult to tamper with the data in a block. •Bot: Short for “robot,” a bot is an autonomous program that interacts with computer ​ ​ systems in a way that appears or attempts to appear human. Hackers can use bots to mine for usernames and passwords used to commit identity fraud. •Cookie theft: Cookie theft is when a cybercriminal makes copies of unencrypted session ​ ​ data and then uses that data to impersonate someone else. •Credential cracking: Credential cracking describes the various methods — word lists, ​ ​ guessing and brute-force — cybercriminals use to obtain passwords. Credential cracking threats are why it’s important to create varied and complicated passwords for all accounts.
    [Show full text]
  • Enroll Today! Identity Theft Occurs Almost Every 3
    I de n tit y T h eft P r otectio n S olutio n S Identity theft occurs almost every 3 seconds! Last year over 11 million Americans were victims of Identity Theft; that translates into a new victim every 3 seconds. This makes identity theft the single largest and fastest growing category of crime in the United States. Last year, for every burglary in the United States six identities were stolen. Are you next?? • Over 11 million U.S. victims last year • 37% increase over the last three years • 47% of ID Theft victims encounter credit problems • ID Theft causes an average of $4,841 in damage per victim • ID Theft restoration can take hundreds of hours Get protected... • by a solution that monitors 1,000+ databases and over 650 billion data points • by a system that rapidly detects identity fraud • by a secure web site that provides you an identity score and report • by ICFE certified specialists that restore your identity if it is compromised Enroll today! And take advantage of IdentaVault’s world class identity theft prevention programs. Whether you are looking for basic protection from our Silver Program, advanced protection from our Gold Program or premium protection from our Platinum Program, IdentaVault has a program to fit your needs. (see Enrollment Form on back). About IdentaVault IdentaVault is one of the fastest growing identity theft prevention providers in the United States. IdentaVault has been in the identity theft industry for years, well before identity theft became a mainstream concern. As a subsidiary of Ocenture, LLC, a two-time Inc.
    [Show full text]
  • KBA —Responsible Use and Scoring February 10, 2004
    PEC Solutions, Inc Leadership in e-Government Solutions KBA —Responsible Use and Scoring February 10, 2004 www.pec.com Introduction Time Complexity of Algorithms Tootsie Roll Pop Internet Identity riddle And Public Perception Leads to … Responsible Use Implementation Best Practices PEC Solutions, Inc. February 2004 -Page 2- Traditional Criticisms of KBA Internet commoditization of Data Accuracy of data furnished to CRA or KB provider Reconciling furnisher’s and CRA’s profit motives with stewardship responsibilities Perception that inquiries can impact credit score LEGEND Consumer Reporting Agency Furnisher KBA KBA Service KBA Provider PEC Solutions, Inc. February 2004 -Page 3- Traditional Criticisms of KBA (Continued) Human Factors Dependence on candidate’s memory Alienation factors (Question selection) Discrimination Solutions must acknowledge Public Opinion Perception Real fears about fraud/identity theft and its consequences PEC Solutions, Inc. February 2004 -Page 4- Overcoming these Criticisms Depends on… Lessons from the Legal World Responsible Use Implementation Best Practices Consistent and defined Scoring Model PEC Solutions, Inc. February 2004 -Page 5- KBA Scoring 1. Identify Verification (valid, existing ID) 2. Identity Authentication - Out of Wallet questions With whom does the user have his car loan? What amount does he pay each month for his mortgage? Who is his ISP? Who is his car insured with? KBA vendor provides a probability (score) that the identity binding is bona fide. Score returned from KBA vendor should not to be confused with an “Identity Score” – which no vendor will yet provide. Vendors require customers to set score thresholds (assuming liability for incorrectly authenticated individuals) PEC Solutions, Inc. February 2004 -Page 6- Factors Influencing Implementation & Score Data Checks Accuracy – Consistency Legitimacy Data Source Diversity Number of data sources (Credit, IRS, Dept.
    [Show full text]
  • Identity Theft Glossary 2021
    Identity Theft Glossary •Account takeover: An account takeover is when a fraudster uses personal information to ​ ​ obtain products and services. Credit card fraud is the most rampant, but skimming and phishing are also common types of account takeovers. •Anti-virus: Anti-virus software runs continuously in the background of a computer and ​ ​ scans for viruses, worms, and malware every time the user accesses a website or downloads anything. •Bait and switch: A bait and switch attack is when a hacker buys advertising space on a ​ ​ webpage and then links the advertisement to a page infected with malware. •Black hat hacker: All hackers can compromise computer systems and create malware, but ​ ​ black hat hackers use these skills to commit cybercrimes. •Blockchain: A blockchain is a string of time-stamped digital records shared between ​ ​ multiple computers. If the data in one block changes, all subsequent blocks in the blockchain reflect the alteration and become invalid. Blockchains help prevent identity theft and fraud by making it difficult to tamper with the data in a block. •Bot: Short for “robot,” a bot is an autonomous program that interacts with computer ​ ​ systems in a way that appears or attempts to appear human. Hackers can use bots to mine for usernames and passwords used to commit identity fraud. •Cookie theft: Cookie theft is when a cybercriminal makes copies of unencrypted session ​ ​ data and then uses that data to impersonate someone else. •Credential cracking: Credential cracking describes the various methods — word lists, ​ ​ guessing, and brute-force — cybercriminals use to obtain passwords. Credential cracking threats are why it’s crucial to create varied and complicated passwords for all accounts.
    [Show full text]
  • This May Be the Best Strategy to Reduce Online Fraud Risk
    F OCUS ON F RAUD This May Be the Best Strategy to Reduce Online Fraud Risk by Stephan Barney raud losses continue to plague online retailers, even though some recent statistics suggest that the tide is turning. A new F study by Experian fraud analysts explores an innovative new data enhancement strategy to help make mitigating fraud risk a reality. n the face of it, online More at Stake A Dearth of Useful Information fraud appears to be In actual dollars, fraud losses Online merchants face two Odeclining—at a limited are growing as the volume of busi- concurrent challenges in fighting rate. Charge-backs due to fraudu- ness conducted online continues to fraud. First, they typically rely on lent activity decreased in 2003, increase dramatically. Online con- a limited amount of internal and according to the Merchant Risk sumer purchases were up 25-30% order information that is not Council (MRC), a nonprofit mem- in 2003 (U.S. Department of always effective in detecting bership organization that works to Commerce) and are expected to fraudulent transactions. For exam- protect and encourage secure rise at a similar pace for the next ple, the information provided in online commerce for merchants several years. an online order is usually limited and consumers. In the MRC’s Online fraud also imposes hid- to name, address, phone number, 2003 member survey, only 10% of den costs that go well beyond actu- and credit card number, and a respondents reported fraudulent al dollars charged back. Revenue is merchant’s internal database may charge-back rates greater than 1%, lost when legitimate orders are only tell them if the customer has compared to 18% of respondents turned away because they look sus- previously ordered from the site.
    [Show full text]