September 1, 2021
Apple Ships Driver Licenses with Privacy-Centric Design
Apple now securely manages your driver licenses in its phone vault. Not only that, they have figured out how to do this while preserving your privacy even when you have to show your proof of driver license to a cop (or any validating entity).
Apple lays out the core privacy and security features in its announcement:
Security and Privacy
Wallet provides a convenient and secure way to present driver licenses and state identification cards while offering superior security and privacy to a physical wallet.
- Apple and the issuing states do not know when or where users present their IDs.
- Driver licenses and state IDs in Wallet take full advantage of the privacy and security built into iPhone and Apple Watch. Customer identity data is encrypted and protected against tampering and theft. Biometric authentication using Face ID and Touch ID ensures that only the person who added the ID to the device can view or present their ID or license in Wallet.
- Driver licenses and state IDs in Wallet are only presented digitally through encrypted communication directly between the device and the identity reader, so users do not need to unlock, show, or hand over their device.
Privacy by Design
When we started Skyflow, we were inspired by how Apple uses various privacy and security technologies to provide a beautiful and easy user experience. This driver license implementation is another example of:
- Zero Knowledge Proofs: Without decrypting all the data about your driver license and exposing it to the validating party, you can simply prove that you have a legitimate right to drive -- an unexpired, valid license.
- Isolate and Protect: Apple uses the phone’s built-in security features to isolate and protect certain data elements and computation.
- Encryption and Tokenization: The data is not just isolated, it's also always encrypted at rest, in transit, and in memory.
You can read the details of Apple's announcement here and a list of the various states that are rolling this out.
With its core privacy and security platform across the phone and the cloud, which took many years for Apple to build out, it has been shipping new features across categories that all rely on the same underlying zero trust architecture:
- Credit Cards
- Boarding Passes
- Health Records
- Anonymous User Registration
At Skyflow, we believe that every company that uses personally identifiable information (PII) to serve their customers will have to build a similar set of technologies -- essentially, you have to either buy or build a zero trust data privacy data vault. Sign up for a demo to learn more.