How Does Digital ID Help Us in Our Daily Lives on ShareHome App?

Objective

Learn how to utilize MasterCard ID Service with Samsung to provide specific authorized user data from Digital ID. The aim of this exercise is to define list of authentication parameters necessary in the process of booking an accommodation on ShareHome App. In this case, the following personal data of potential tenant needs to be acquired:

  • Name

  • Address

  • Email

  • Phone

  • Age

Overview

Introduction to Digital ID

What makes a person to be one who they claim to be? Every person is surrounded by a unique group of attributes such as face, fingerprint, ID number, birthdate, address, and knowledge. We can say we identify people correctly if we collect personal attributes from trust authorities in a secure manner.

Digital ID makes a person easily prove their identity and share their attributes to service providers who require a person’s verified data for their services. To achieve this, we need multiple roles in an ID echo system where each role provides secure storages and channels and do the responsibilities.

In our echo system, we have the following roles:

Digital Identity Service Provider

MasterCard ID Service provides the technology platform and operational service to allow the secure storage and transmission of Digital Identity data from the user to the Relying Party having been verified to a required level of assurance by an Identity Verifier Provider. MasterCard also defines the commercial model and liability frameworks (the operating rules) allowing participants in the system to trust the data.

Trust Provider

A Trust Provider manages the user relationship, and is responsible for acquiring new users. They provide the tools (via a MasterCard-developed SDK) to enable the users to manage their Digital Identity. Samsung is a core trust provider in this case. The echo system is on top of the state-of-the-art technologies of Samsung which are resilient biometrics authentications, security mechanisms backed by Knox, and more.

Identity Verification Provider

An Identity Verification Provider verifies data asserted by the Trust Provider and the user using data mastered by the Identity Verifier (i.e. not aggregated from other data sources).

Relying Party

A Relying Party provides products and services to users, relying on the data available in user’s account. This data has been verified by one or more Identity Verification Providers to a level of assurance required by the Relying Party to meet regulatory, legislative, or operational needs.

Users

Users are defined as the citizens of the service who are making an identity assertion.

Code Lab Activity

The ShareHome application simulates the booking process of an apartment. To proceed, a set of authenticated private data is required to complete the entire process. The following flow depicts this specific use case:

  1. 1. Enter "Share Home" App and select "Book" button

  2. 2. Detail page

  3. 3. Select "Continue with ID"

  4. 4. Splash window

  5. 5. Face authentication consent

  6. 6. Share the identity

  7. 7. Complete payment