The Reference implementation of ValidIDy is a digital credential wallet developed under contract for the U.S. Department of Homeland Security, known as Mobile Device Attribute Validation (MDAV). The app allows First Responders attending emergency situations to prove their bona fides in the field. First Responders must usually present permits, licenses or certifications on plastic or paper cards. Mobile technology has long been a possibility for digital credentials, but integrity and authenticity - in other words, provenance - has been missing until now.
Here is some more information about this product that is only revealed once clicked on.
Several recent breaches have exposed the Social Security Numbers and other identifiers of essentially all Americans. ValidIDy can protect people against having their stolen IDs used behind their backs. It is not necessary to re-issue identifiers. The trick is to be able to tell "original" ID numbers from illicitly used copies.
ValidIDy can be used in multiple form factors – smart phones, smartcards, PCs or other personal devices – to protect any government issued data, including health identifiers, driver licenses, proof of age or immigration status.
Open Banking and related open data reforms are requiring financial institutions to remove barriers for customers to move their personal data (credit scores, transaction history, loan performance and so on) onto other financial services providers. With the loss of friction comes new security and privacy responsibilities, and new onus on the provenance of financial data. As information flows through open data supply chains, we need to know where it’s come from, who has given consent for it to flow, and the intended purpose for its disclosure
A cryptographic envelope for data, a ValidIDy capsule cryptographically encapsulates discrete pieces of personal information or attributes, sealing in the provenance of each. Data capsules are carried safely in personal hardware devices (mobile phones, smartcards, crypto tokens, or IoT devices). Each capsule proves where its attribute came from and the authority that vouched for it. When a capsule is used to digitally sign a transaction, it indelibly ties the attribute to the transaction payload, and assures the receiver that the attribute has been under the positive control of its owner. ValidIDy capsules are a form of standard public key certificate, and leverage fully mature, industrial-strength PKI technologies and services.
ValidIDy creates a strong virtual triangle joining a piece of personal data (i.e. an attribute aka claim or identity assertion) to an individual, via an authentication device under their control. A ValidIDy capsule is a form of digital certificate, issued via ValidIDy web services by or on behalf of an Attribute Authority, and bound to a private key securely held within the device controlled by the end user. Proof of possession of a ValidIDy capsule means that the indivdual has the attribute in question, has been vouched for by the authority, and has used the attribute with express consent.