Enroll Once
Scan your passport via NFC, get a tamper-proof digital credential on your phone. Your identity is cryptographically signed and biometrically bound to you. Learn more →
Introduction
IDToken is a passwordless authentication system built by id3 Technologies. Your passport becomes a digital credential on your phone. To log in, you confirm a code and glance at the camera — no password, no account to hack, under 10 seconds.
Why IDToken?
Section titled “Why IDToken?”| Problem | IDToken Solution |
|---|---|
| Passwords get stolen | No passwords exist to steal |
| Phishing tricks users into giving credentials | The user verifies the service first (mutual authentication) |
| Identity is self-declared — anyone can create a fake account | Identity is anchored to a government-issued passport |
| Data breaches expose user databases | No user database — the server stores only a public key binding |
| MFA is clunky (SMS codes, authenticator apps) | One push notification + a glance at the camera |
The User Journey
Section titled “The User Journey”Log In Anywhere
Confirm a code, glance at the camera, done. Works on websites, kiosks, smart TVs — anything that can display a 6-digit code. Learn more →
You Control Your Data
Choose what to share per service. A bar gets “over 18” — not your full name, nationality, or document number. Consent is cryptographically bound. Learn more →
Enterprise Ready
Drop-in integration via OpenID Connect, SAML 2.0, or direct JWT. Standard protocols, no vendor lock-in. Learn more →
Who Is This For?
Section titled “Who Is This For?”Developers
Integrate passwordless login with a few API calls. WebSocket for real-time UX, JWT for stateless verification. Quick Start →
Security Architects
Government-anchored trust chain, mutual out-of-band authentication, hardware-bound keys, immutable audit trail. Security Model →
Product Teams
Replace passwords and reduce account fraud. Under 10 seconds to authenticate. No password reset infrastructure to maintain. How It Works →
Built on International Standards
Section titled “Built on International Standards”IDToken combines three standards to deliver passwordless identity verification with government-grade trust:
| Standard | What it provides |
|---|---|
| ITU-T X.1280 | Mutual out-of-band authentication — the service proves itself to the user, and the user proves themselves to the service |
| ISO 22376 (VDS) | Visible Digital Seal — a compact, cryptographically signed credential derived from a passport, carrying the holder’s biometric photo |
| ISO 22385 (ESEDS) | Trust governance — a PKI chain that traces certificate trust back to the VDSIC Governance Board |
Explore the trust architecture →
The IDToken Ecosystem
Section titled “The IDToken Ecosystem”Auth Server
Orchestrates the authentication protocol. Generates OTPs, verifies mobile signatures, issues identity tokens, and manages the trust chain. Quick Start →
Mobile App
The user’s authenticator and credential wallet. Holds the digital credential, receives push notifications, and performs face verification. Learn more →
VDS Issuance
Generates tamper-proof digital credentials from passport data via NFC reading, liveness detection, and hardware-secured signing. Learn more →
Admin Console
Operator dashboard for enrollment management, session monitoring, audit trail analysis, and trust infrastructure health. Learn more →