VERICODE vericode.com.au

AusPost folded Digital iD. So what is left to build?

Vericode · 30 April 2026


Australia Post shut down its consumer Digital iD service today, nine years after launching it as one of the early accredited services under Australia’s digital identity framework. The easy read is that a private identity product failed. The better read is structural. When governments issue mobile driver’s licences and federal credentials, private-label proofing becomes a much harder place to make a market.

That is not a criticism of AusPost. It is a clean answer to a question the market spent years treating as more mysterious than it was. Proving who a person is, at national scale, using government documents and government-issued credentials, has the shape of a public rail. A private provider can build useful tools around it. Owning the consumer identity layer itself is a different fight.

So the identity stack is narrowing.

Public rails are becoming the place where the base proof lives. State mobile driver’s licences, federal identity services and existing document checks provide the credential centre of gravity. Private vendors move towards orchestration, integration, fraud signals, onboarding workflows and the hard edges that public credentials do not solve neatly.

You can see that in the market signals around the shutdown. FrankieOne is moving towards mobile driver’s licence support. IDVerse replacing Onfido inside Docusign for Australia and New Zealand points to local proofing and local regulatory fit becoming more valuable. The private layer is not disappearing. It is being forced to get more specific.

Specific is where the interesting work remains.

Government credentials can help prove who holds an identity. They are less useful at proving what is happening inside a live channel. They do not, by themselves, prove who is on the other end of an inbound phone call to a contact centre. They do not tell a staff member whether a caller who knows the customer’s details is actually the customer. They do not prove that the person who pressed send in a support flow is the person the account expects.

That is the signal-at-the-channel problem.

It is smaller than national digital identity and easier to miss because it does not look like a grand credential scheme. It shows up in ordinary operational moments. A customer calls. A supplier changes details. A contractor asks for access. A staff member receives an escalation. A recovery flow starts. The organisation does not need a new national identity. It needs a trustworthy signal at the point where a claim is being made.

That is where private infrastructure still has room. Not by rebuilding the government credential layer, but by using the right rails at the right moment and making the answer usable inside messy business workflows.

The distinction matters. If a product tries to compete with government identity proofing head-on, the economics get ugly. If it helps a business decide whether a live interaction should be trusted, it is solving a different problem. One is base proof. The other is channel trust.

Fraud is moving towards the second problem. A scammer does not always need to create a new identity. Often they need to borrow enough of a real one to pass through a conversation. They need the staff member, parent, customer, or finance team to accept that the person in the channel belongs there.

AusPost closing Digital iD tells us where the centre of gravity is moving. Public rails for base identity. Private layers for orchestration and live trust. The interesting question is no longer only who proves your identity. It is who proves it is you on the other end of the line.

The gap that remains is small enough to miss in the headlines and large enough to build a company in.