OpenID Overseas

GOV.UK Wallet and One Login

Nat 2025-03-13 No Comments

What is GOV.UK Wallet?

GOV.UK Wallet was unveiled on January 1 in the context of a digital driving licence12The UK government is developing a digital document management app, the details of which were announced by Secretary of State for Science, Innovation and Technology Peter Kyle on February 2025, 2.3The announcement comes as part of the UK government's digitalisation drive, which aims to introduce a new app that will allow people to carry digital versions of their identity documents on their smartphones. The app will allow people to store government-issued documents securely on their phone and produce them when needed.4.

The main features are:

  1. Securely store government-issued digital documents
  2. Can be used to prove age, identity and eligibility for services
  3. Can be used just like a paper or physical card
  4. Non-government issued documents (such as train or concert tickets) cannot be added
  5. Use is optional

The GOV.UK Wallet is expected to be available in 2025. The first document to be supported will be the HM Armed Forces Veterans Card, with other government documents such as driving licences to be added later.5.

In terms of security, it will require access using the GOV.UK One Login, preventing anyone else from using or accessing the documents, and will utilise security features such as facial recognition technology built into smartphones.6.

What is GOV.UK One Login?

GOV.UK One Login is an online authentication system provided by the UK government that allows users to access multiple government services with a single account. Its main features are:

  1. Access multiple government services with a single email address and password7
  2. Use two-factor authentication for added security8
  3. Providing identity verification to verify user identity
  4. Simplify and streamline access to government services

Currently, GOV.UK One Login is only available for a limited number of government services, but in future it will be available for all GOV.UK services.9Some of the services available include applying for veterans cards, applying for import/export licenses, applying for teaching qualifications, and more.

You can manage your information and see the services you use through GOV.UK One Login5You can also choose to get your security code via text message or an authenticator app.6.

GOV.UK One Login is provided by the Government Digital Service (GDS), with the Cabinet Office acting as the data controller10The system is aimed at improving user convenience and simplifying access to government services.

GOV.UK Login Protocol

GOV.UK One Login is OpenID Connect (OIDC)11It is a service that complies with12OpenID Connect is an authentication layer built on top of the OAuth 2.0 protocol and extends OAuth 2.0 to provide authentication information in a standardized way.

Specifically, GOV.UK One Login will:

  1. OpenID Connect Compliant: Uses the OIDC protocol for user authentication and attribute sharing.
  2. Authorization flow: We implement the standard OAuth 2.0/OIDC authorization code flow, which includes the following steps:
    • /authorize Authorization request to the endpoint
    • Issuing an authorization code
    • /token Token exchange at the endpoint
    • Obtaining ID and Access Tokens
    • /userinfo Get user information at the endpoint
  3. Enhanced Security: JWT-secured OAuth 2.0 Authorization Request (JAR)13We are using it to improve the security of authentication request parameters.

By the way, I am the lead author of both OpenID Connect and JAR, so this is a great pleasure for me.

footnote

  1. Digital driving license coming this year
  2. Nikkei FinTech: UK government to digitise driver's licences using digital wallet "GOV.UK Wallet"
  3. Digital passport as part of your identity will be made available through new GOV.UK Wallet app
  4. UK digital driving licenses to be available by 2025
  5. GOV.UK Wallet
  6. UK government to digitise driver's licences using digital wallet "GOV.UK Wallet"
  7. About GOV.UK One Login
  8. Signing users in
  9. Using your GOV.UK One Login
  10. Privacy Notice
  11. Sakimura, et al. OpenID Connect Core 1.0
  12. How GOV.UK One Login works
  13. Sakimura, et al. JWT-secured OAuth 2.0 Authorization Request (JAR) (RFC9101)

Leave a comment

This site uses Akismet to reduce spam.For details of how to process comment data, please click here.