Website →

SpruceID Blog

Thoughtful perspectives on identity, interoperability, and the systems that turn public policy into usable services.

Presenting Your Digital ID Online: How It Works
Digital Identity

Presenting Your Digital ID Online: How It Works

The same privacy and trust principles that make verifiable digital credentials work in person also need to extend to online interactions. Here, we walk through some of the infrastructure that enables that experience.
What Is Public Key Infrastructure and Why Does It Matter for Government Digital Services?
Digital Identity

What Is Public Key Infrastructure and Why Does It Matter for Government Digital Services?

Every time a mobile driver’s license is verified in seconds, it’s PKI doing the invisible work of turning cryptographic keys into trusted digital identity.
What Makes a Passkey Different from a Password?
Digital Identity

What Makes a Passkey Different from a Password?

Passkeys are a modern approach to authentication that stores a cryptographic credential on your device.
Why Signing Keys Are an Important Part of Your Credential Program
Zero Trust

Why Signing Keys Are an Important Part of Your Credential Program

A verifiable digital credential program's trustworthiness depends not only on the credentials it issues, but on how the signing keys behind those credentials are protected, managed, and governed throughout their lifecycle.
Credential Lifecycle 101: From Issuance to Expiry, and Who Owns Each Stage
Digital Identity

Credential Lifecycle 101: From Issuance to Expiry, and Who Owns Each Stage

From identity proofing to renewal, the long-term success of a verifiable digital credential program depends on clear ownership at every step.
What Is a Credential Format, and Why Does It Matter Which One You Choose?
Interoperability

What Is a Credential Format, and Why Does It Matter Which One You Choose?

The format of a digital credential may seem like a technical detail, but it can shape interoperability, privacy, and flexibility for years to come.
What Is a Presentation Request, and Who Controls What Gets Asked For?
Digital Identity

What Is a Presentation Request, and Who Controls What Gets Asked For?

Resident control begins before a credential is presented, with rules that determine what information can be requested.
What Does "Resident-Centric" Actually Mean in a Digital Identity System?
Digital Transformation

What Does "Resident-Centric" Actually Mean in a Digital Identity System?

Resident-centric digital identity is not a marketing claim, it is a set of design decisions that determine who controls data, privacy, and participation.
What Is the Difference Between Authentication and Identity Proofing?
Digital Identity

What Is the Difference Between Authentication and Identity Proofing?

Before a digital credential can be trusted, a system must answer two questions: who is this person, and are they the rightful holder of the credential?
SpruceID at the 2026 Utah Data Governance Summit
Events

SpruceID at the 2026 Utah Data Governance Summit

At Utah’s 2026 Data Governance Summit, SpruceID demonstrated how marriage licensing can serve as a model for scalable digital trust.
What Is a Digital Signature, and Why Does It Matter for Government Credentials?
Digital Identity

What Is a Digital Signature, and Why Does It Matter for Government Credentials?

Just as physical IDs use visible security features to support trust, digital credentials use cryptographic digital signatures to make that trust verifiable.
What Does ‘Open Source’ Mean for a Government Digital Identity System?
Digital Transformation

What Does ‘Open Source’ Mean for a Government Digital Identity System?

Open source can make digital identity infrastructure more transparent when it’s paired with the governance, maintenance, and support agencies need to trust it long term.