The UK Digital Identity and Attributes Trust Framework (DIATF) is a set of interoperable standards and working practices designed to facilitate the creation and use of digital identities for a wide variety of applications. The goal of the Trust Framework is to ensure that a person’s digital identity (or any relevant identity attributes) can be trusted by any organisation or individual who needs to confirm them.

To achieve this, the UK government’s Department of Science, Innovation & Technology (DSIT) requires that products or services that are designed to collect, verify, store or share our personal data are independently certified by approved certification bodies (CBs).

The DIATF itself is in its Beta phase with a view to moving to a full Version 1.0 later in 2024. Read the full background here.

It is being piloted across a number of specific use cases including the Disclosure & Barring Service (DBS) where digital identity checks are mandated. In addition, the Home Office Right to Work and Right to Rent schemes encourage certification under the DIATF.

The Department for Science, Innovation & Technology (DSIT) is the lead body for the UK Digital Identity and Attributes Trust Framework. It has already specified certain requirements for Framework participants and these include:

• Technical security standards, such as encryption
• Operating a Quality Management System, such as ISO 9001
• Operating an Information Security Management System, such as ISO 27001
• Operating a Privacy Information Management System, such as ISO 27701