The TDIF has been superseded by the Australian Government Digital ID System (AGDIS) and a new accreditation scheme established by the Digital ID Act 2024.
Direct link: digitalidsystem.gov.au
Responsible agency: Department of Finance
Last updated: 1 December 2024
The Trusted Digital Identity Framework (TDIF) was an Australian Government accreditation framework for providing digital identity services. A voluntary scheme, the TDIF set out rules and standards around privacy, security, transparency, trust and choice to be followed by accredited organisations.
Based on globally recognised best practices and standards, the TDIF informed the development of the Digital ID Act 2024.
Applicability
The TDIF has been superseded by the Australian Government Digital ID System (AGDIS) and a new accreditation scheme established by the Digital ID Act 2024.
TDIF Identity Proofing Levels
Identity Proofing Levels were an accreditation standard within the TDIF.
Identity Proofing Level 1
Identity Proofing Level 1 (IP1) was used when no identity verification was needed or when a very low level of confidence in the claimed identity was needed. This level supported self-asserted identity (I am who I say I am) or pseudonymous identity.
IP1 was for services where the risks of not undertaking identity verification would have a negligible consequence to the individual or the service. For example, to pay a parking infringement or obtain a fishing licence.
Identity Proofing Level 1 Plus
Identity Proofing Level 1 Plus (IP1 Plus) was used when a low level of confidence in the claimed identity was needed. This required one identity document to verify a claim to an existing identity.
IP1 Plus was for services where the risks of getting identity verification wrong would have minor consequences to the individual or the service. For example, the provision of loyalty cards.
Identity Proofing Level 2
Identity Proofing Level 2 (IP2) was used when a low-medium level of confidence in the claimed identity was needed. It required two or more identity documents to verify a claim to an existing identity.
IP2 was for services where the risks of getting identity verification wrong would have moderate consequences to the individual or the service. For example, the provision of utility services. An Identity Proofing Level 2 Identity check was similar to the traditional “100-point check”.
Identity Proofing Level 2 Plus
Identity Proofing Level 2 Plus (IP 2 Plus) was used when a medium level of confidence in the claimed identity was needed. It required two or more identity documents to verify a claim to an existing identity and required the binding objective to be met.
IP2 Plus was for services where the risks of getting identity verification wrong would have moderate-high consequences to the individual or the service. For example, undertaking large financial transactions.
Identity Proofing Level 3
Identity Proofing Level 3 (IP 3) was used when a high level of confidence in the claimed identity was needed. It required two or more identity documents to verify a claim to an existing identity and required the binding objective to be met.
IP3 was for services where the risks of getting identity verification wrong would have high consequences to the individual or the service. For example, access to welfare and related government services.
Identity Proofing Level 4 (IP 4)
Identity Proofing Level 4 (IP 4) was used when a very high level of confidence in the claimed identity was needed. It required four or more identity documents to verify a claim to an existing identity. The individual claiming the identity had to attend an in-person interview and meet the requirements of IP 3.
IP 4 was for services where the risks of getting identity verification wrong would have very high consequences to the individual or the service. For example, the issuing of government-issued documents like an Australian passport.
TDIF Credential Levels
Credential Levels were an accreditation standard within the TDIF.
Credential Level 1
Credential Level 1 (CL1) provided a basic authentication credential suitable for use at the IP1 proofing level. This allowed single-factor authentication, e.g. password.
Credential Level 2
Credential Level 2 (CL2) provided a strong authentication credential suitable at the IP1, IP2 and IP3 proofing levels. This required two-factor authentication, e.g. password with additional one-time password.
Credential Level 3
Credential Level 3 (CL3) provided a very strong authentication credential, suitable at the IP1, IP2, IP3 and IP4 levels. This required two-factor authentication and hardware verification.
Attribution Provider accreditation standard
Attribute Provider was an accreditation standard within the TDIF.
Attributes are additional information about a person or business such as entitlements or characteristics (for example, that an individual had a particular qualification). Attribute providers generated and managed attributes and claims about an individual, business or organisation that were provided to reliant services.