The objectives of setting up a warm and hot disaster recovery (DR) site for the digital identification infrastructure in two geographical locations are as follows:
Overall, the objectives of establishing warm and hot DR sites for the digital identification infrastructure in two geographical locations are to ensure business continuity, provide redundancy and fault tolerance, leverage geographic diversity, enable effective disaster recovery planning, and maintain compliance and security standards.
Warm and hot DR sites located 631km apart
5 Public agencies and Private organizations connected
500 thousand transaction requests handled per week
The National Digital Identity is an Integrated Maturity Stage where it has successfully begun to adopt digital transformation strategies across multiple areas of business and services in a streamlined fashion with buy-in from leadership since 2015.
The NIMS Design comprises of:
The registration and enrolment process which will be once in a lifetime, will result in the capture of demographic and biometric data (ten (10) fingerprints and live digital photographs and signatures), and other relevant data of citizens and legal residents. Provision is made for facial recognition while fingerprints will primarily be used for verification. Also, provision is made for future upgrades (in the fifth year of operation of the NIMS) for the inclusion of iris. Various forms of registration activities and databases that currently exist will be streamlined through a process of harmonization and integration, designed to enable the ‘reuse’ as appropriate, of existing infrastructure, optimize resources, ensure sustainability, flexibility and scalability (based on lessons of the past) and avoid a ‘single point of failure’ scenario.
IMPLEMENTATION:
An important strategic approach to facilitate the implementation of the NIMS is the conceptual distinction between two connected components, namely the ‘Front End Operations’ (FEO) and the ‘Back End Operations (BEO),
a. Front-End Operations comprising:
b. Back-end operations comprising:
c. Upon complete rollout, the infrastructure would include:
The NIMS architecture is focused on the achievement of six (6) primary objectives central to the attainment of the dictum ‘enroll once and be identified for life’ and these are:
The important highlights of the technology architecture are described below:
The NIMS (backend) Servers which are at the core of the managed services will provide the processing of the enrolment, verification, and authentication services over the network of the FEPs. The Servers are in two categories:
The primary Servers at the main Data Centre and the Servers at the Disaster Recovery/ Business Continuity Sites. They are designed to meet the demand for 1:1 and 1: N biometric de-duplication and the verification and authentication service requests from end-users of the NIDB.
The Network infrastructure provides for two sets of functionality based on the enrolment process, authentication and verification process, and the Smart Card personalization process. The enrolment which will be done by the FEPs will require massive data transmittal in a single and or batched format from the IRCs where enrolments are done to the NIDB Data Centre where the de-duplication is done through Fibre Optic, VSAT/WAN, LAN, Internet, connected third party network infrastructure.
The security design to secure the various components from logical and physical attacks. The security design covers both Server security (including firewall, intrusion prevention and detection systems (IDS, IPS, etc), Network Security, Enrolment and End-User security(including PKI, encryption, etc).
ISO/IEC 27001:2022
GVCP - MasterCard (Global Vendor Certification)
Here are some key metrics used for Monitoring and evaluating the NIMS digital identity systems:
These metrics are used individually or in combination to evaluate the performance and effectiveness of a digital identity system. The selection of metrics should align with the specific objectives, context, and stakeholders' requirements of the system being monitored and evaluated.
Here are some capacity building measures for the NIMS digital identity system:
By implementing these capacity-building measures, NIMC is able to enhance the effectiveness, efficiency, and sustainability of its digital identity systems while ensuring compliance, security, and user trust.
The National Identity Management Commission Act is the instrument that created the legal regulatory and institutional framework for the identity sector in Nigeria including the mechanism for implementing Government’s reform effort. Important sections of the Act include the following:
National Identity Management Commission can engage and cooperate with digital public infrastructure on digital identification systems through public-private partnerships, international collaboration, stakeholder engagement, research and innovation support, policy and regulatory frameworks, and capacity-building initiatives.
Digital identity has various use cases across sectoral applications. Here are some examples:
These are just a few examples of how digital identity can be applied across different sectors. The versatility of digital identity makes it a fundamental enabler for a wide range of applications, supporting efficiency, security, and personalized experiences in various sectors.
NIMS Strategy And Technology Document
www.nimc.gov.ng
Content provided by ICD, Ministry of Electronics & Information Technology, Government of India
Site is designed, developed, hosted and maintained by National E-Governance Division (NeGD)
© 2024, All right reserved @ NeGD under Meity, Government of India