The NCCoE is currently seeking collaborators for this project. If you are interested, please follow the Federal Register notice instructions and submit a formal letter of interest.
Digital Identities - Mobile Driver's License (mDL)
The National Cybersecurity Center of Excellence (NCCoE) is helping to accelerate the adoption of mobile driver’s license standards and best practices. In collaboration with technology vendors, government agencies, regulators, standards bodies, and organizations seeking to adopt mDLs, the NCCoE will build a reference architecture demonstrating real world business use cases, integrating mDLs with commercially available technology and into business processes.
NCCoE Project Use Cases
Why mDLs?
mDLs function much like a traditional driver's license, carrying information such as name, date of birth, and address but in a digital format accessible through a dedicated mobile application, often referred to as a digital wallet. Compared to physical driver’s licenses, mDLs have several capabilities that make them easier to use with online and digital transactions:
- mDLs are underpinned by public key cryptography, making the credential cryptographically verifiable.
- mDLs can be integrated natively with device biometrics for user verification.
- mDLs can communicate natively between two mobile applications but also in cross device flows between mobile applications and the web browser on a laptop or tablet.
- mDLs offer the potential for selective disclosure, allowing users to pick and choose which information to share with third parties.
Transactions at financial institutions, healthcare providers, government services, and many other organizations could benefit from enhanced customer experiences, more accurate identity verification, and reduced fraud if they supported mDLs.
Challenge: Credential compromise and online fraud are significant issues in today's cyberthreat landscape, as traditional methods of online identity verification, including mDLs, are increasingly vulnerable. The effectiveness of these methods is undermined by new technologies like AI-generated images and the ability of malicious actors to access necessary information.
Join the Community of Interest
![Employee speaking on video call with colleagues on online briefing with laptop at home](/sites/default/files/styles/965xy/public/2021-09/iStock-1223848962.jpg?itok=MPY4dISE)
A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Share your expertise and consider becoming a member of this project's COI.