What is the UK Digital Identity and Attributes Trust Framework (DIATF)?
The UK Digital Identity and Attributes Trust Framework (UK DIATF) is a government-backed standard that sets the rules for digital identity providers, attribute services, and consumers in the UK. It aims to create more secure, useful, and controllable digital identity solutions across the economy.
We have been involved with the DIATF since 2019, working closely with government consultations and helping organisations achieve and maintain certification.
Our DIATF Consultancy & Support Services
We support startups, scale-ups, and enterprises with every aspect of DIATF compliance, certification, and migration.
Gap Analysis
We assess your current systems and processes against DIATF requirements, identifying exactly what needs to change.
Certification Readiness
We help implement necessary changes and prepare your documentation for successful certification.
Role Determination
We help you identify which DIATF roles apply to your service (Identity, Attribute, Holder, Orchestration, or Component) and how your existing commercial model fits.
Gamma 0.4 Migration
We support you with the uplift to the current version of the DIATF.
DIATF Certification Process Explained
Gap analysis
We can conduct an assessment of your current product and processes to identify what gaps exist and what controls you've already implemented.
Depending on your business, this might focus on your product development, market positioning, certification readiness or one of the core components of the DIATF such as information security, risk management, quality management or data protection.
Stage 1
A documentation review and initial assessment conducted by the certification body.
Remedial work
The process of addressing any gaps or deficiencies identified during the Stage 1 assessment to meet the trust framework's standards.
Stage 2 (Certification)
A comprehensive review by the certification body to verify that the product and business meets the applicable DIATF requirements.
Internal audit and improvement
A self-assessment process conducted by the certified business.
We'll help you establish robust internal audit processes, enabling your team to conduct thorough self-assessments to maintain ongoing compliance and continuous improvement.
Why choose us
Experience Since Day One
We've been involved with the DIATF since its earliest consultations in 2019.
Proven Success Record
We've helped multiple organisations successfully certify or get ready for certification against the framework.
Cross-Functional Expertise
We're product, engineering, and compliance experts and can speak your language.
Practical Implementation
We can act as an SME, or get hands on with full management system implementation.
Frequently Asked Questions about DIATF
What is the UK Digital Identity and Attributes Trust Framework (DIATF)?
The DIATF is a UK government standard that sets out rules and requirements for digital identity and attribute service providers to ensure secure, privacy-respecting, and trustworthy digital identity solutions.
Who needs DIATF certification?
Any organisation providing digital identity or attribute services in the UK that wants to be recognised as a trusted provider under the government framework.
What are the DIATF roles?
Roles include Identity Service Providers (IDSPs), Attribute Service Providers, Orchestration Services, Holders, and Component Providers. We help you determine which apply to your business.
What is Gamma 0.4?
Gamma 0.4 is the latest pre-release version of the DIATF, introducing updated requirements and clarifications. We support migration to this version.
How long does DIATF certification take?
Timelines vary, but typically involve an initial gap analysis, remediation, and two certification stages conducted by an accredited body. We help streamline this process.
How can consultancy help with DIATF?
We guide you through every step: understanding requirements, gap analysis, remediation, documentation, certification readiness, and ongoing compliance.