Identity security guidelines and standards

Australia's National Identity Security Strategy provides high-level guiding principles to guide identity security initiatives. These are supported by a suite of resources which provide guidance to help agencies and organisations improve the security of identity documents, authentication standards, biometric interoperability, integrity of identity data holdings and procedures for document verification.

Designed initially for government agencies, these standards and guidelines may also serve as a benchmark for private sector organisations, particularly those providing identity related services to, or in conjunction with, government agencies.

National Identity Proofing Guidelines

These new national guidelines provide a more robust, yet flexible risk-based approach to identity proofing than the traditional '100 point check', and are aligned with international best-practice standards.

This approach enables a greater range of identity verification processes to be conducted online, using systems such as the national Document Verification Service (DVS). This in turn can result in significant cost savings, while still maintaining strong controls against identity fraud.

Security Standards for Proof-of-Identity Documents

The Security Standards for Proof–of–Identity Documents identifies and recommends a set of security standards, with the aim of reducing the risk of forgery or unauthorised alteration of documents.

Data Matching Better Practice Guidelines

The Data Matching Better Practice Guidelines sets out 17 key principles to consider in the technical design, build and analysis of data matching applications; and the analysis and interpretation of the results produced.

The information contained in the guidelines was developed with the assistance of the Commonwealth Reference Group on Identity Security Data Matching Working Group, and is largely based on methods applied by experienced data matching practitioners within government.

The guidelines should be read in conjunction with the Office of the Australian Information Commissioner's Guidelines for the Use of Data-Matching in Commonwealth Administration. These guidelines were developed in consultation with Australian Government agencies to assist with ensuring data-matching programs are designed and conducted in accordance with sound privacy practices.

The guidelines and further information about privacy legislation and data-matching can be found on the Office of the Australian Information Commissioner website.

Recording of a name to establish identity—better practice guidelines for Australian Government agencies

This paper outlines better practice guidelines to improve consistency and accuracy in use of a name as an identifier by Australian Government agencies.

The practices outlined in these guidelines seek to balance the operational requirements of different agencies, with better practice principles to increase consistency and uniformity in use of name policy and procedures.

National Biometric Interoperability Framework

The National Biometric Interoperability Framework promotes the interoperability of biometric systems between government agencies—one of the goals of the National Identity Security Strategy. The framework sets out guiding principles and provides for interagency coordinating mechanisms to support this goal.

The framework operates within Commonwealth, state and territory privacy legislation, and promotes the highest standards of privacy protection for biometric uses by encouraging agencies to maintain strong privacy, security and other safeguards.

The Face Verification Service is an important step in achieving the outcomes of the Framework.

Biometric Interoperability Capability Requirements

There are a range of factors that can impact the interoperability of biometric systems. To help enlist the assistance of industry and researchers in overcoming potential issues, government agencies have developed a statement of biometric interoperability capability requirements. This statement outlines the needs of the Australian Government in developing capabilities to promote interoperability, including biometric sharing or matching between agencies.