Mobile driver's licenses are already accepted at over 250 TSA checkpoints across 17 states, transforming how travelers verify their identity for air travel. The process is faster, more secure, and more private than presenting a physical ID, and it's backed by federal standards and significant infrastructure investment.
The airport verification process
When a traveler presents an mDL at a TSA checkpoint, the interaction follows a standardized protocol defined by ISO/IEC 18013-5. The traveler approaches the document verification podium and presents their credential using their phone's wallet application.
TSA's Credential Authentication Technology (CAT-2) readers verify the mDL through cryptographic methods. The phone and the reader establish a secure connection, typically via NFC tap or QR code, and exchange data according to the standard's specifications. The reader checks the DMV's digital signature to confirm the credential is authentic, verifies it hasn't been tampered with, and confirms the holder's identity matches.
The entire process takes seconds. The traveler never hands over their phone, the credential is presented through a tap or scan while the device remains in their control. This addresses one of the core privacy principles: no device surrender.
Federal infrastructure and standards
TSA's acceptance of mDLs reflects substantial federal investment and coordination. The Transportation Security Integration Facility (TSIF) conducts rigorous testing to validate that state-issued mDLs meet federal requirements before they're approved for airport use. States must demonstrate their mDL programs conform to ISO/IEC 18013-5 specifications and pass TSIF testing before their credentials are accepted.
The CAT-2 readers deployed across TSA checkpoints represent a nationwide infrastructure investment. These readers can verify mDLs offline, using preloaded public keys from state DMVs, ensuring the system works even without network connectivity. This offline capability is essential for reliability in high-volume airport environments.
AAMVA's Digital Trust Service provides the trust framework that enables cross-state interoperability. When a traveler from California presents their mDL at a checkpoint in New York, the reader can verify the California DMV's signature because trust relationships are established through this shared infrastructure.
Privacy at the checkpoint
Airport verification demonstrates privacy-preserving design in practice. When a traveler presents their mDL, the TSA agent verifies the credential locally, the interaction is not logged back to the DMV. The issuer doesn't learn when or where the credential was used, preventing the creation of travel surveillance logs.
Only the attributes relevant to travel are shared. While a physical license displays everything on the card, an mDL presentation can be limited to the information TSA actually needs for identity verification. The traveler maintains control throughout the process.
The path to broader adoption
TSA acceptance has become a key driver of mDL adoption. States actively coordinate their mDL programs with TSA's TSIF testing requirements to ensure their residents can use verifiable digital credentials at checkpoints. Being on the list of accepted states materially boosts perceived legitimacy and travel utility for state programs.
For travelers, mDL acceptance at airports demonstrates that verifiable digital credentials work in high-stakes, regulated environments. The same infrastructure and standards that enable airport verification are being extended to other use cases, from banking to healthcare to government services, building toward a comprehensive digital identity ecosystem.
Want to keep learning?
Subscribe to our blog.
