Virginia’s Department of Motor Vehicles has entered the
implementation phase of a multi-year identity management plan that will
enable the sharing of authentication data between state agencies.
ZDNet reports
that the system— which hopes to improve service, reduce fraud and cut
costs — hinges on the Commonwealth Authentication Service. The system
provides identity attributes on an enterprise scale as well as supplies
ID functionality to other state agencies enabling them to cut back on
credential issuance and instead focus on other agency services.
The Commonwealth Authentication Service is
expected to issue credentials compliant with NIST Level of Assurance one
through three, as well as full interoperability with Level of Assurance
Four. NIST Assurance helps to define how an identities are registered,
how users authenticate and if the credentials themselves meet the
requirements of the authenticating Web site.
Drawing from the one of the state’s largest databases of personal
attributes — name, date of birth, social security number, gender, etc .—
the Commonwealth Authentication Service will also support enterprise
identity services, identity proofing, multifactor authentication and
identity binding.
At present, citizens receiving services from the Virginia Department
of Social Services can use the authentication system to self-enroll and
create user accounts— a Level one credential. Meanwhile, the DMV is
working to install identity vetting and binding utilities to both
authenticate citizen IDs and determine what services are available to
them— a Level two assurance. There are also plans afoot for multi-factor
authentication and support for Level three credentials.
source:SecureIDNews