BSI Launches UK Digital Identity Certification Program

Published Date : 9/4/2025 

The British Standards Institution (BSI) has launched a certification program for the Gamma (0.4) version of the UK’s Digital Identity and Attributes Trust Framework (DIATF). This initiative aims to enhance trust and compliance in digital verification services. 

The British Standards Institution (BSI) has launched a certification program for the Gamma (0.4) version of the UK’s Digital Identity and Attributes Trust Framework (DIATF). This move is significant as it helps formalize the legal basis for digital verification services and supports the framework's transition from the pilot phase to full implementation.

In June, the DIATF received Royal Assent through the Data (Use and Access) Act 2025, advancing the framework into its Gamma phase. This version expands the DIATF to cover five distinct roles: Identity, Attribute, Orchestration, Holder, and Component services. The formalization of these roles is crucial for establishing a robust and reliable digital verification ecosystem.

BSI's certification scheme is designed to help organizations demonstrate compliance with the latest version of UK DIATF requirements. According to a release from the organization, “BSI’s certification scheme service is now positioned to support organizations in demonstrating compliance with the latest version of UK DIATF requirements, helping to inspire trust and confidence in digital verification services.”

The role of conformity assessment bodies (CABs) is a recurring theme in discussions about digital identity and trust. Whether it is biometric testing labs or organizations like the UK’s Age Check Certification Scheme (ACCS), third-party attestations are essential for ensuring that digital identity and attribute services meet high standards for security, privacy, and reliability. High-risk sectors such as healthcare and financial services rely heavily on compliance to establish trust.

Carlos Pérez Ruiz, global head of digital trust product certification for BSI, emphasizes the importance of trust in digital verification services. “As digital verification services become increasingly vital across industries and government, trust will be critical to their successful adoption,” he states. “The formalization of the UK DIATF marks a turning point for the sector and sets a new benchmark for digital trust, and we’re proud to play a key role in shaping the UK’s digital future through our certification service.”

According to BSI’s website, certification to the Gamma version delivered independently by BSI is mandatory for providers supporting digital DBS checks and those seeking integration with GOV.UK services such as One Login. It is also strongly recommended for Right to Work and Right to Rent checks.

The DIATF is on track to transition from the pilot to the full 1.0 version by the end of the year, with an accompanying 1.0.0 accreditation scheme. For now, the Department of Science, Innovation and Technology (DSIT) and the Office for Digital Identities and Attributes (OfDIA) are managing certification until private-sector CABs can take over compliance testing. The BSI announcement brings this handoff closer to reality.

In a related development, the ACCS has filed a formal complaint with the continental oversight body for national conformity assessments, alleging that the DIATF is not fit for accreditation due to transparency issues with the certification scheme rules. This complaint underscores the ongoing challenges and debates surrounding the implementation of digital identity frameworks. 

Frequently Asked Questions (FAQS): 

Q: What is the Digital Identity and Attributes Trust Framework (DIATF)?

A: The Digital Identity and Attributes Trust Framework (DIATF) is a set of guidelines and standards designed to ensure the security, privacy, and reliability of digital identity and attribute services in the UK.

Q: What roles does the Gamma version of DIATF cover?

A: The Gamma version of DIATF covers five distinct roles: Identity, Attribute, Orchestration, Holder, and Component services.

Q: Why is BSI's certification scheme important for the DIATF?

A: BSI's certification scheme is important because it helps organizations demonstrate compliance with the latest version of UK DIATF requirements, thereby inspiring trust and confidence in digital verification services.

Q: What services require mandatory certification under the Gamma version of DIATF?

A: Certification to the Gamma version delivered independently by BSI is mandatory for providers supporting digital DBS checks and those seeking integration with GOV.UK services such as One Login.

Q: What is the current status of the DIATF's transition to the full 1.0 version?

A: The DIATF is on track to transition from the pilot to the full 1.0 version by the end of the year, with an accompanying 1.0.0 accreditation scheme. 

More Related Topics :