In order to ensure the UK is well protected now and in the future we need to build upon our existing knowledge of cyber security risks and the resilience of software supply chains and are working to identify which mitigations the government can leverage to ensure the UK is well protected now and in the future.
We’re also assessing the impact of these mitigations in driving enhanced security measures. A key area of research interest therefore is understanding the consequences of requiring higher levels of cybersecurity for products and digital services sold in the UK. Strengthening this evidence base will help shape and inform future policy work around the regulation of products and business requirements for cyber security.
Some technologies are critical to cyberspace. To build and sustain competitive edge in cyber-related technologies we need a coordinated, rigorous and consistent approach to identify and analyse critical areas of science and technology and prioritise national effort. CSDI is interested inbeing able to better anticipate the science and technology developments most vital to UK cyber power and in analysing thebe opportunities and risks related to those developments.
It is crucial to ensure that digital identity solutions are both secure and inclusive. The directorate seeks to gather further evidence on how best to enable more inclusive digital identity services whilst maintaining robust security measures. Digital identity solutions enable a person to prove something about themselves for the purposes of a transaction, an eligibility check or accessing services. This includes verifying a person’s age when purchasing age regulated products, when undertaking pre-employment checks or opening a bank account. The government is not mandating specific approach, but instead has committed to setting outcomes-based standards in the form of the UK digital identity & attributes trust framework. (https://www.gov.uk/government/publications/uk-digital-identity-and-attributes-trust-frameworkbeta-version/uk-digital-identity-and-attributes-trust-framework-beta-version)
Organisations that adhere to these standards and agree to oversight from the Office for Digital Identities and Attributes (OfDIA) will receive a trust mark, so that businesses and individuals can be confident that their digital identity solution is safe and secure.
If you are keen to register your interest in working and connecting with DSIT Digital Technology and Telecoms Group and/or submitting evidence, then please complete the DSIT-ARI Evidence survey - https://dsit.qualtrics.com/jfe/form/SV_cDfmK2OukVAnirs.
Please view full details: https://www.gov.uk/government/publications/department-for-science-innovation-and-technology-areas-of-research-interest/dsit-areas-of-research-interest-2024
This question was published as part of the set of ARIs in this document:
SPRITE+ is a NetworkPlus that will deliver a step change in engagement between people involved in research, practice, and policy relevant to trust, identity, privacy, and security (TIPS) with a focus on digital contexts....
Funded by: EPSRC
Lead research organisation: University of Manchester
The project focuses on trust, identity, privacy, and security in digital contexts, which directly aligns with the question's emphasis on governance, standards, inclusion, and security in digital identity markets.
Digital Identity is the driver for the next generation of B2B and B2C transactions. To move the world of digital economy successfully to the next phase with Web 2.0 it is vital to have identity management solutions in pl...
Funded by: EPSRC
Lead research organisation: City, University of London
The project addresses digital identity management, which is relevant to the question's focus on inclusion and security in digital identity markets, but does not cover governance and standards frameworks.
Personal data holds great potential to benefit commerce and society, but, at the institutional level, concerns are rising over the risks associated with data access, ownership, privacy and confidentiality. The main purpo...
Funded by: EPSRC
Lead research organisation: University of Warwick
The project investigates individual vulnerability with regard to cybersecurity, which partially aligns with the question's concern about security and privacy risks within digital identity solutions, but does not cover governance and standards frameworks.