In Public Key Infrastructure (PKI) terms there is a single Registration Authority (that is, NHS Digital). All organisations that run a local Registration Authority (RA) do so on a delegated authority basis from NHS Digital.
The local RA function carries out identity checks of an applicant(s) to create their national verified digital identity. Secure tokens are then issued to users in the form of Smartcards or other authorised devices utilising strong two factor authentication. Appropriate access permissions are assigned to the health professional’s user profile as approved by the employing organisation’s policy.
Agreement means the terms and conditions found on this page.
NHS Smartcards means an approved physical card, supplied by the authorised supplier(s) of cards to NHS Digital, are similar-to chip and PIN bank cards and enable healthcare professionals to access clinical and personal information appropriate to their role. A smartcard used in conjunction with a passcode, known only to the smartcard holder, gives secure and auditable access to national and local Spine enabled health record systems.
Authorised Devices means an alternative to smartcards, a device as approved by FIDO 2 Consortium that provides Assured Level 3 Authentication.