Solution Products & Services Support About VeriSign Contact Search  
VeriSign: The Value of Trust™
Resources
PKI Disclosure
Licenses & Approvals
E-Sign
Publications
Home > Repository

Introduction to Client Digital IDsSM

Why do I need a VeriSign Digital ID?

How do I know what class of Digital ID I need?

How do Digital IDs work?

How do I use Digital IDs?

How do I get a Digital ID?

 Digital ID

Why do I need a VeriSign Digital ID?

Virtual malls, electronic banking, and other electronic services offer the convenience and flexibility of round-the-clock service direct from your home. However, your concerns about privacy and security might still be preventing you from taking advantage of the web for conducting your personal business. Encryption alone is not enough, as it provides no proof of the identity of the sender of the encrypted information. Without special safeguards, you risk being impersonated online. Digital IDs address this problem, providing an electronic means of verifying someone's identity. Used in conjunction with encryption, Digital IDs provide a more complete security solution, assuring the identity of all parties involved in a transaction.

Equipped with a VeriSign Digital ID, you will have your own unique electronic credential. A Digital ID provides an electronic means of proving your identity online, the same way that a passport or driver license does in face-to-face interactions.

As the leading provider of Digital ID products and services, VeriSign is recognized throughout the industry as a name to be trusted. With a VeriSign Digital ID, you can be assured that your electronic ID card will be accepted and recognized by the organizations and individuals with whom you communicate, and that your Digital ID will be supported by the security-enhanced software you want to use.

With a VeriSign Digital ID for your browser, you can identify yourself to Web sites and be authorized to access protected information.

Return to table of contents.

How do I know what class of Digital ID I need?

Digital IDs within the VeriSign Trust NetworkSM are differentiated by the level of assurance they provide of a person's identity. The assurance level depends on how a person's identity is verified during the enrollment process. VeriSign Trust Network Class 1-3 Digital IDs are the standard Digital ID assurance levels accepted throughout the industry. The class of Digital ID that is appropriate for you depends on how you intend to use the Digital ID and the level of identity assurance required by the individuals or organizations with whom you communicate.

VeriSign Class 1-2 Digital IDs are intended for use by individuals; no assurance is made regarding the individual's affiliation with a company or organization.

A Class 1 Digital ID ensures that you have an unambiguous name and e-mail address. You can obtain a Class 1 Digital ID regardless of where you live. If you intend to use your Digital ID for casual Web browsing, a Class 1 Digital ID provides the level of assurance you need.

Class 2 Digital IDs provide identity assurance by requiring third-party verification of your name, address, and other personal information. At this time, Class 2 Digital IDs are only available to residents of the United States and Canada. VeriSign's automated enrollment system checks the information you provide against a consumer database maintained by Equifax. Expected uses of Class 2 Digital IDs for browsers include most online purchases and online subscriptions.

Return to table of contents.

How do Digital IDs work?

Digital IDs use public key encryption techniques employ use two related keys, a public key and a private key. In public key encryption, the public key is made available to anyone who wants to correspond with the owner of the key pair. The public key can be used to verify a message signed with the private key or encrypt messages that can only be decrypted using the private key. The security of messages encrypted this way relies on the security of the private key, which must be protected against unauthorized use.


In a Digital ID, a key pair is bound to a user's name and other identifying information. When installed in a Web browser, a Digital ID functions as electronic credentials that sites can check. This enables Digital IDs to be used in place of password dialogs for information or services that require membership or restrict access to particular users.

A Digital ID is signed by the certification authority, such as VeriSign, that issued the Digital ID. Multiple Digital IDs can be attached to a message or transaction, forming a certification chain where each Digital ID testifies to the authenticity of the previous Digital ID. The top-level certification authority must be independently known and trusted by the recipient.

As the leader in Digital ID products and services, VeriSign is a trusted certification authority. VeriSign's certification practice statement is publicly available, providing a detailed description of the policies and procedures used for issuing and managing Digital IDs. You can be assured that your VeriSign Digital ID will be recognized and trusted by those with whom you communicate.

Return to table of contents.

How do I use Digital IDs?

To use your VeriSign Digital ID, you use VeriSign aware, security-enhanced applications. Many applications, such as secure Web browsers and S/MIME-compliant e-mail tools, support the use of Digital IDs for electronic communications. In a Web browser, once your Digital ID is installed, the browser uses it automatically when you access sites that request a Digital ID. Sites can then use your Digital ID to determine what information or services to allow you to access.

For example, a site could check your Digital ID against a list of paying members, recognize that you have paid for access to live stock quotes, and allow you to access up to the minute stock prices. You don't have to enter a member name, number, or password--your Digital ID is used to verify your identity automatically. You don't have to remember a different membership ID and password for each service you access, and the services are assured that someone else isn't accessing the information using your account.

Return to table of contents.

How do I get a Digital ID?

You can request a Digital ID from VeriSign using the online enrollment services. When you use the browser enrollment service to request a Class 1 Digital ID, your request is processed automatically; in minutes, you can be using your new Digital ID.

Note: Each security-enhanced application currently requires a separate Digital ID; Digital IDs cannot be exported from an application, shared among applications, or shared across machines. If you use multiple Digital ID enabled applications, you will need to request a separate Digital ID for each of them.

Enrollment Process

To complete the online enrollment process, you:
  1. Specify the type of Digital ID you want: Class 1
  2. Enter the identification information that will be contained in your Digital ID along with the requested personal information so your identity can be verified.
  3. If required, enter the billing information so the annual fee can be charged to your Visa or MasterCard.
  4. Verify that the information is correct.
  5. Accept the Digital ID Subscriber Agreement.
  6. Submit the request.
Return to table of contents.