Architecture: work in progress

Identity principles

Part of
Architecture: work in progress collection
Last reviewed
8 June 2026
Owner
Head of Architecture

Learn how DfE designs and manages user identity across its digital services.

‘Identity’ within these guidelines refers to how our services utilise user identities to authenticate and authorise access to services, and how we design and build services to ensure consistency and re-use.

Consistent use of identity platforms provides a foundation to develop joined-up end-to-end user journeys across our services. This enables the delivery of tailored solutions and access privileges which are linked to the user’s role and aligned to their needs.

Guidance is also provided for the secure administration and management of our platforms and services. This ensures that access granted to systems is conscious and appropriate, is granted only for the time required for the specific activity and is logged and audited.

Identity segment definitions

Consumers for DfE’s services are aligned to 3 main identity segments. This alignment enables standardisation across services and improves the experience for our users by enabling consistent end-to-end user journeys.

B2C

Identity segment for services provided for citizen users who are interacting with services in a personal capacity.

B2B

Identity segment for services provided for sector users who need to interact with our services due to being employed by or engaged with a sector organisation the Department deals with.

B2E

Identity segment for services provided for civil servants, contractors and managed service providers working on behalf of government departments.

Use of the guidelines

The following guidelines are provided to guide projects and teams when creating or procuring solutions for use by DfE's users. The guidelines will create a framework for projects to operate within and to demonstrate alignment with best practice.

The guidelines are split into 5 sections:

  1. Support defragmentation.

  2. User experience.

  3. General ID good practice.

  4. Scalability.

  5. Links with other standards.

Alignment to principles

Alignment and exceptions to the principles will be reviewed as part of assurance processes with the security and architecture professions to streamline governance. Exceptions will be approved or declined as relevant, with all decisions tracked with rationale for future reference.

Changes to principles

Updates or modifications to the principles can be requested initially via the Identity Management Community of Interest, and in the future with standard updates and iterations via GitHub.