SpruceID Blog

Thoughtful perspectives on identity, interoperability, and the systems that turn public policy into usable services.

Using a Mobile Driver's License at the Airport: How TSA Checkpoint mDL Acceptance Works

Using a Mobile Driver's License at the Airport: How TSA Checkpoint mDL Acceptance Works

Behind every seamless mDL experience at the airport is a chain of cryptographic trust and interoperability standards working quietly in the background.
What Is Selective Disclosure, and How Do Verifiable Digital Credentials Reveal Only What's Needed?

What Is Selective Disclosure, and How Do Verifiable Digital Credentials Reveal Only What's Needed?

Selective disclosure turns identity verification from an exercise in oversharing into one of proving only what's needed.
Presenting Your Digital ID Online: How It Works

Presenting Your Digital ID Online: How It Works

The same privacy and trust principles that make verifiable digital credentials work in person also need to extend to online interactions. Here, we walk through some of the infrastructure that enables that experience.
What Is Public Key Infrastructure and Why Does It Matter for Government Digital Services?

What Is Public Key Infrastructure and Why Does It Matter for Government Digital Services?

Every time a mobile driver’s license is verified in seconds, it’s PKI doing the invisible work of turning cryptographic keys into trusted digital identity.
What Makes a Passkey Different from a Password?

What Makes a Passkey Different from a Password?

Passkeys are a modern approach to authentication that stores a cryptographic credential on your device.
Why Signing Keys Are an Important Part of Your Credential Program

Why Signing Keys Are an Important Part of Your Credential Program

A verifiable digital credential program's trustworthiness depends not only on the credentials it issues, but on how the signing keys behind those credentials are protected, managed, and governed throughout their lifecycle.
Credential Lifecycle 101: From Issuance to Expiry, and Who Owns Each Stage

Credential Lifecycle 101: From Issuance to Expiry, and Who Owns Each Stage

From identity proofing to renewal, the long-term success of a verifiable digital credential program depends on clear ownership at every step.
What Is a Credential Format, and Why Does It Matter Which One You Choose?

What Is a Credential Format, and Why Does It Matter Which One You Choose?

The format of a digital credential may seem like a technical detail, but it can shape interoperability, privacy, and flexibility for years to come.
What Is a Presentation Request, and Who Controls What Gets Asked For?

What Is a Presentation Request, and Who Controls What Gets Asked For?

Resident control begins before a credential is presented, with rules that determine what information can be requested.
What Does "Resident-Centric" Actually Mean in a Digital Identity System?

What Does "Resident-Centric" Actually Mean in a Digital Identity System?

Resident-centric digital identity is not a marketing claim, it is a set of design decisions that determine who controls data, privacy, and participation.
What Is the Difference Between Authentication and Identity Proofing?

What Is the Difference Between Authentication and Identity Proofing?

Before a digital credential can be trusted, a system must answer two questions: who is this person, and are they the rightful holder of the credential?
SpruceID at the 2026 Utah Data Governance Summit

SpruceID at the 2026 Utah Data Governance Summit

At Utah’s 2026 Data Governance Summit, SpruceID demonstrated how marriage licensing can serve as a model for scalable digital trust.