MOSIP Docs
LTS
LTS
  • Home
  • Overview
  • ID Lifecycle Management
    • ID Schema
    • Identifiers
  • ID Authentication
  • Privacy and Security
    • Data Protection
    • Keys
    • Privacy
  • Biometrics
    • ABIS
    • ABIS API
    • Biometric SDK
    • Biometric Devices
    • SBI
    • Biometric Image Specification
    • FTM
  • Partners
  • Modules
    • Pre-registration
      • Pre-registration User Guide
    • Registration Processor
    • Registration Client
      • Operator Onboarding
      • Registration Client User Guide
      • Registration Client Home Page
      • Registration Client Configuration
      • Registration Client UI Spec
    • Commons
    • ID Repository
    • Partner Management
    • Data Share
    • Packet Manager
    • WebSub
    • Resident Services
    • Administration
      • Admin Portal User Guide
    • ID Authentication Services
    • Reporting
    • Automation Testing
    • Storage
  • Deployment
    • Sandbox Deployment
    • Server Hardware Requirements
    • Country Implementation
    • Masterdata Guide
  • APIs
  • Community
    • Contributions
    • Code of Conduct
  • License
Powered by GitBook
On this page
  • Security by design
  • Privacy by intent

Was this helpful?

Privacy and Security

PreviousID AuthenticationNextData Protection

Last updated 3 years ago

Was this helpful?

MOSIP's fundamental architecture and design incorporates highest levels of privacy and security.

Security by design

Key security features:

  • Encryption of data in-flight or rest. (See )

  • Integration with trusted applications only.

  • Fraud avoidance - association of authentication only with specific transactions.

  • Misuse prevention - user can lock or unlock their authentication

  • Virtual ID and Tokens to prevent identity theft

Privacy by intent

Key privacy features:

  • Minimal data with selective disclosure on a need-to-know basis.

  • Sensitive data protected (not stored or logged in clear form).

  • Consent support – user decides who can receive what credentials.

  • No biometrics based search on database (only with ID).

  • De-centralised ID usage and data (cannot profile based on usage).

  • Virtual ID and Tokens to prevent profiling across transactions.

  • Face data is not sent to ABIS for deduplication.

Data Protection