The Biden administration is preparing to issue a cybersecurity executive order that aims to expand the use of digital identity documents for public benefit programs. The order will direct federal agencies to increase adoption of mobile driver’s licenses (mDLs) and other digital credentials for identity verification purposes, building on existing state-level implementations.
Under the order, the National Institute of Standards and Technology (NIST) will develop guidance for using digital identity documents, including mDLs and electronic passports, in online verification processes. The initiative emphasizes interoperability between systems while incorporating data minimization principles and preventing issuer tracking. This follows NIST’s recent work on Digital Identity Guidelines, which established foundational standards for secure digital authentication.
Currently, approximately 15 states issue mobile driver’s licenses, primarily used for in-person verification such as airport security screening. The executive order includes provisions for agencies with grantmaking authority to consider funding state-level mDL implementation programs, potentially accelerating adoption ahead of the 2025 REAL ID deadline.
The Treasury Department and General Services Administration will pilot a notification service to alert individuals when their identity information is used in public benefit applications, enabling them to halt unauthorized payments. This measure comes in response to Federal Trade Commission data showing a 3,000 percent increase in government benefit-related identity theft complaints during the pandemic. The initiative builds upon existing identity verification systems like Login.gov, while addressing known limitations in current federal identity verification infrastructure.
Anne Neuberger, Deputy National Security Director for Cybersecurity and Emerging Technology, indicated that the administration has spent seven months developing executive action to establish cybersecurity foundations for the next administration. However, she noted that the order remains subject to presidential approval. Neuberger has previously overseen several major cybersecurity initiatives, including recent efforts to enhance smart device security certification.
The initiative addresses several technological challenges, including those posed by artificial intelligence. NIST has identified emerging threats such as AI-generated driver’s license images that can deceive document scanning systems. The order also considers privacy and bias concerns related to facial recognition technology, which has become increasingly prevalent in government identity verification systems.
The draft order explores alternatives to traditional identity verification methods, including attribute validation services provided by the Social Security Administration. It notably avoids mandating the use of Login.gov, which received criticism in a 2023 inspector general report highlighting significant operational challenges and security concerns.
Sources: Nextgov/FCW
–
January 9, 2025 – by Cass Kennedy
Related News
Switzerland Unveils Technical Framework for National Digital ID System and E-Wallet
Mitek Launches ‘Digital Fraud Defender’ to Combat Deepfakes
Axiad Launches Axiad Mesh to Tackle Enterprise Identity Risks
Maryland MVA Launches Business App for Mobile Driver’s License Verification
Ernst & Young Acquires Dignari
GAO Report Seems a Little Late in Flagging Login.gov Issues
Follow Us