Digital ID got a budget line. The phone call did not.
Vericode · 16 May 2026
Budgets are mostly plumbing documents. That is why they matter.
The 2026-27 Federal Budget put serious money behind identity and fraud infrastructure. The big number is A$654.3 million over four years for Digital ID: myID, the Relationship Authorisation Manager, the Digital ID Exchange, myGov LinkID, the ACCC’s Digital ID regulator role, OAIC privacy oversight and the standards work around it.
There is more in the same family. A$86.3 million for Phase 2 of the Counter Fraud Strategy, aimed at real-time fraud detection in tax and super. A$198.1 million for business-register uplift and secure data access, including ATO-held data through the Consumer Data Right. Another year for the National Anti-Scam Centre.
Good. It should be funded.
Identity is not a nice little login problem any more. It is national plumbing. It decides who gets into government services, who can act for a business, who can change super details, who can share tax data and who gets stopped before the money moves.
That is the useful Budget read.
Not that government forgot scams. That is too easy, and probably wrong. The useful read is that government is hardening the rails it controls.
Tax. Super. myGov. ATO-held data. Business registers. Regulator capability.
That is a lot of rail.
But it is not the whole track.
The funded identity layer is mostly about proving people to government and government-adjacent systems.
The scam moment is often more prosaic: someone picks up a phone and believes the person on the other end.
A customer gets a call from the bank. A broker receives instructions from a borrower. A super fund member asks to change details. A business gets a message that looks like the ATO. A staff member hears just enough real information to keep talking.
That is not usually where the Budget line item sits. It is too messy. Too operational. Too mixed up with banks, telcos, software platforms, call centres and ordinary human judgement.
It is also where a lot of trust breaks.
The Budget can fund myID. It can fund the ATO to detect fraud earlier. It can fund the ACCC to keep regulating Digital ID and running scam coordination for another year.
What it cannot do, by itself, is make every live contact trustworthy.
That part is about channel trust. Who is calling? Who is texting? Who is allowed to use that brand name? Who controls this number? Is this customer actually the customer, or just someone holding enough leaked facts to sound convincing?
Those questions are smaller than the Budget speech. They are also the questions that decide whether the fraud gets a clean run.
The timing matters because the Scams Prevention Framework is about to push more of the work onto industry.
Banks, telcos and some digital platforms are in the first wave. The language is no longer just public awareness and scam warnings. It is prevention, detection, disruption, reporting and response.
That changes the board question.
Not: did we tell customers to be careful?
But: did we have reasonable controls where the scam actually touched our business?
That is a different shape.
For some fraud types, the control sits near the payment. Confirmation of Payee makes account-name mismatches visible before money moves. For SMS, the Sender ID Register starts putting a hard edge around who can use a brand name in the sender field. For tax and super, the Budget is funding more monitoring around account access and high-risk changes.
Voice is still less settled.
A phone call remains one of the few places where a high-trust interaction can start with almost no proof at all. The caller has a name, a number, a bit of context and a confident voice. Sometimes that is enough.
That is why the Budget matters for fraud and identity people even if they are not in government.
It says identity is infrastructure now. Not a side feature. Not a compliance garnish. Infrastructure.
But once government has said that, the next question is hard to dodge.
Which identity moments are still being held together with string?
The answer will not be the same in every sector. Banks have one set of rails. Telcos have another. Super funds, brokers, accountants and software platforms each have their own awkward corners.
But the direction is plain enough. The serious work is moving away from asking customers to spot scams by instinct, and towards proving the trust signal before the customer has to guess.
The Budget funded a lot of identity plumbing.
The phone call is still leaking.