Responsible for data covering 13 million vehicles and 14 million driving license holders, the national vehicle agency treat the security and integrity of the data they hold as a top priority.
Providing secure access for insurance providers, approved companies and governmental organisations are amongst the central responsibilities of the vehicle licensing authority but in doing so requires a secure method of data access.
The vehicle and driving license data held by the organisation is integral to many third-party organisations being able to serve motorists, vehicle manufacturers, insurers and governmental organisations.
With an increasing cyber threat from organised crime and state-sponsored hacking, the national vehicle agency needed to provide third party organisations access to the data they needed while ensuring unauthorised access was prevented.
A proven solution was essential for such a sensitive project of national importance. Scale and flexibility to connect to a variety of internal databases and technologies was also important.
Any solution would need to be simple to manage– increasing demand on an already busy IT department was not feasible – equally, the security of the solution could not create barriers and a complicated user experience for the third-party organisations needing access to the national vehicle and driving license data.
It was recognised that public key infrastructure (PKI) represented the secure, proven, scalable solution the organisation needed.
Using PKI the national vehicle and driving license authority would have the certainty necessary in the identity of third parties accessing their secure data thanks to the cryptographically protected unique identities central to any PKI system.
However, whilst PKI offered a robust process the organisation needed the means to connect PKI on-site within their server environment and the software necessary to issue and lifecycle manage credentials provided to the third-party companies and governmental organisations requiring access to their data.
MyID® credential management system (CMS) not only offered the connectors necessary to plug PKI into their existing on-premise environment for minimal disruption and capital expenditure but also the software needed to issue and lifecycle manage PKI credentials across the third-party organisations accessing their data.
Simplicity – in the integration and use of MyID, both for the organisation’s own IT team and end-users were clear benefits.
Additionally, the proven scale and security of MyID; from its use in national identity schemes for millions of citizens, to operation in many of the world’s most secure aerospace and defence companies, underlined the quality and integrity of the software for the organisation’s Board and project leads.
The optimum level of secure multi-factor authentication is embedded for protection against the number on cause of data breach – weak or compromised user or system credentials
Easy to deploy
Integration with existing architecture has reduced deployment time, complexity and cost of ownership
Easy to manage
User-friendly CMS provides an easy solution for issuing and managing credentials at scale
Widely adopted in government and enterprise for issuing and managing millions of certificates for trusted digital identities
Flexibility and interoperability of the PKI MyID solution can grow in line with the organisation’s needs; connecting to new technology and devices as required