ID.me and the Government’s Identity Verification Problem

The backlash against the company, while legitimate, misses a bigger issue.

By
38

Digital identity company ID.me burst into the public eye last year with a simple, straightforward elevator pitch—a one-stop shop for online ID verification—and an eye-popping statistical argument to justify its existence: $400 billion of the federal dollars spent on supplemental unemployment benefits during the pandemic, ID.me asserted, had been lost to fraud.

These sorts of statements contributed to the company’s meteoric rise, with hundreds of millions of dollars in venture capital financing, a $1.5 billion valuation, and, by last fall, a blizzard of contracts to run e-security for government entities at every level—including the unemployment agencies of 27 states, the Department of Labor, and, most notably, the Internal Revenue Service. If you wanted to access your records on the IRS’s website—old tax returns, outstanding balances owed the government, and so on—you’d need to go through ID.me.

But this week, the IRS backed out of the deal, citing ID.me’s use of facial recognition technology. “Everyone should feel comfortable with how their personal information is secured, and we are quickly pursuing short-term options that do not involve facial recognition,” IRS Commissioner Charles Rettig said in a statement.

The IRS retreat wasn’t particularly surprising: ID.me has been suffering a death of a thousand cuts in the press in recent days, including in a Bloomberg feature (“How Did ID.me Get Between You and Your Identity?”) that portrayed the product as a buggy mess and a widely circulated blog post from security writer Brian Krebs that detailed his own difficulties running ID.me’s verification gauntlet. Internal blunders threw more wood on the bonfire: The company admitted earlier statements claiming it had only used so-called “one to one” facial recognition software (matching your picture to the picture on your government-issued documents, without reference to any biometric database) were untrue. Last week, even Congress got in on the action, with senators on both sides of the aisle publicly calling for the IRS to tear up its ID.me contract.   

You're out of free articles
Create an account to unlock 1 more articles
By signing up with your email, you agree to The Dispatch’s privacy policy and terms and conditions
Already have an account? Sign In
38
By
Comments (38)
Join The Dispatch to participate in the comments.
 
  1. Pingback: บ้านมือสอง
  2. Pingback: brainsclub
  3. Pingback: Alacabenzi Cubensis – 4 Oz,
  4. Pingback: victoria secret bbw
  5. Avatar photo
    Ben Connelly

    My biggest beef is just that I don’t like the government - or a contractor - having my face on record. I don’t like picture of myself and hate selfies and if I could I would be like Robert Downey Jr. in the first Sherlock Holmes movie and cover my face every time my picture gets taken…

    Collapse
  6. Kurt Von Fuchs

    Standards are important and we have them online. The big tech companies all have very good security. If the government was smart it stop dealing with these rinky-dink companies contract with Google Apple and Microsoft to create real reliable databases it's not hard. But it is costly and time-consuming. In exchange for their efforts we could possibly reduce our tax bill or stop trying to put them out of business.

    Collapse
  7. Avatar photo
    Mike Kupfer

    Doesn't Estonia provide a lot of government services online? What do they (or other countries with similar online services) do to identify users and combat fraud?

    Collapse
    1. Avatar photo
      Mike Kupfer

      https://en.wikipedia.org/wiki/Estonian_identity_card has a nice writeup

      Collapse
  8. Avatar photo
    JDW

    Good article. I can't believe this is the first I've heard of ID.me.

    I think there are two questions here.
    1. Do we want online facial recognition that stores the data in a secure way?
    2. Is ID.me the company to deliver that service?

    I think #1 is to me an unqualified yes. I use facial recognition on my iPhone and honestly I don't want anything else but I have to have all that #1 implies.

    #2, It sounds like ID.me got off to a bit of a rocky start but nothing I've read seems disqualifying. I'd have to verify their claims but if right they've done nothing wrong.

    Collapse
  9. Avatar photo
    Rccater

    I'm afraid this horse has done left the barn, folks. Facial recognition id is here, it's being used and developed by companies that will offer their services in the market, and businesses like banking, financial services, medical records, and many others (including government at all levels) will use it because it's too darn useful and convenient not to.

    Collapse
  10. Avatar photo
    C C Writer

    The big issue as I see it is that the government shouldn't (can't, even) require citizens to have the latest gadgets the cool kids can't live without, in order to comply with government requrements.

    I don't own a smartphone. I don't like them. They are not user friendly. I use an up to date desktop computer to do stuff online. Every time I read somewhere "text us" or "get our app" or "simply use your smartphone to do bla bla bla" my reaction is "and what smartphone is that? What other options do you offer? Meet me where I am. And don't make it too damn complicated, or I won't bother doing business with you." Private companies can afford to ignore this. Government agencies must not.

    Anyway, I think I'm OK because I don't file directly with the IRS website; I file using TurboTax. But the news stories last week did not clarify this at all. I think maybe the reporters didn't get it, or didn't ask the right questions to elicit the relevant facts.

    Collapse
Load More