Professional Documents
Culture Documents
MyDigital ID
MyDigital ID
browser
MALAYSIA
IDENTITY CARD
MyKad
710808-10-8668
Registration
WARGANEGARA
SELANGOR
password
ISLAM LELAKI
KIOSK
• X.509 Digital Certificate MyDigital ID App
• Two factor strong • Authenticator
• ISO/IEC 9798-3 Entity aunthentication
authentication • Digital certificate
• IETF RFC 7515 JSON Web Signature
MyDigital ID will provide users – in particular Malaysian citizens – with a high-assurance MyKad instrument, with an
equivalently high-assurance authenticator applicable towards the widest possible use-case spectrum including routine
web and mobile application transactions, as well as Internet of Things (IoT) and blockchain applicability. It is also used for
online authentication for secure authentication with online service provider or signing of online transactions.
VALUE
MyDigital ID provides the platform to enable fast and secure execution of identity
authentication for users’ interaction with entities both in person and online. Most
importantly, MyDigital ID allows users to be ubiquitously available.
MyDigital ID is key to inclusive socioeconomic growth, facilitating access to Government
services, financial services, social security benefits, education, healthcare and many
other critical services. It enables individuals to unlock value and benefits as they interact
with Government agencies, businesses, institutions and other individuals.
The implementation of MyDigital ID can bring forth immense economic value through
efficiency gains such as cost and time savings. Beyond economic benefits, MyDigital ID
enables social and political inclusion, rights protection and transparency.
FEATURES
• One single identification - Enables
accessibility to all Government and private
TECHNOLOGY BENEFITS
digital services
• Security
• Trusted digital ecosystem – Common user Protects against phishing attack, with
pool of data and services enables application irrefutable authentication outcomes
across different systems, organisations and
countries • Privacy
Digital certificates ensures minimal privacy
• High security – Trusted identity
footprint as it that does not require real-
authentication based on user password and
time accessibility to centralised identity
unique device physicality
management system
• Secure identity management – User-specific
• Acceptability
through Certificate Signing Request and
receipt by Certificate Authorities Leverages on the assurance and ubiquity of
MyKad to undertake authentication and digital
• Android and iOS compatible – Leverages signing of transactions at national level
on security characteristics of both mobile
operating systems. • Legality
Complies with Signature Act 1997 and
Electronic Commerce Act 2006.
FUTURE PLAN
Business Medical Transportation Agriculture Environment &
Manufacturing Education
Financial Services & Healthcare & Smart City & Forestry Biodiversity
MyDigital ID
Lightweight protocol for secure element
Secure element specification
Cyber-physical access control
User administered authorisation chain
Privacy protection mechanism
Digital asset ownership framework
ho rity
Aut
10
:1
0
tion
ica
Ce rtif My Digital ID Server
M ana App
M
yD g
Activation Controller for
ig em
ita e
• Digital ID Management
l I nt
MyDigital ID
D
Provider App • Authentication
• Digital Signature
#1
M
ob
MyDigital ID Server
ile
#1
Ap
Services activation for
#2
p
My
M
• Authentication
ob
App Server
ile
Dig
Ap
#3
ital
M
ob
ID A
ile
Ap
MyDigital ID Server
p
pp
#2
Services activation for
App Server • Digital Signature
et MyDigital ID Server
#3
tern
Services activation for
In App Server • Authentication
• Digital Signature
My Digital ID ecosystem
FRAMEWORK ECOSYSTEM
MyDigital ID framework offers four basic services MyDigital ID contains user digital identity which
to Service Provider systems: can be utilised by other mobile applications for
authentication and digital signature functions. An
1. Client-side key generation and Certificate
ecosystem of mobile applications can be created
Signing Request submission to server
to leverage on common user pool. This ecosystem
2. Server-side certificate issuance and receipt at can be extended to international markets, allowing
client for access to larger user base using a standardised
authentication method.
3. Client-side authentication for secure session
establishment and server verification
PCT/MY/2019050084
3 Security Framework for Transaction Signing
& MY/2018001925
PCT/MY/2018050090
4 Physical Access Control via Challenge-Response Interaction.
& MY/2017005186
PCT/MY/2018050080
5 Transaction Signing on Multiple Channels.
& MY/2017005162
PCT/MY/2018050079
6 Pseudonymisation and Reversal Thereof of Personally Identifiable Information
& MY/2017005024
PUBLICATION
M Syarif, A Goh, H Cheong, K Lee & K Ng (2017). Transaction Signing on Multiple Channels. IEEE Intl Conf Adv Comp,
Comms & Informatics (IACCCI): Udueepi, IN.