Cambodia's Digital Identity Infrastructure: CamDigiKey and Beyond

Cambodia's journey toward digital identity began with a fundamental challenge: the country's paper-based identity system was fragmented, inconsistent, and excluded significant portions of the population. The Khmer national ID card (Aknha Sangkhep), administered by the General Department of Identification under the Ministry of Interior, has achieved approximately 90% coverage of the adult population. However, the physical card lacks modern security features, has limited machine-readability, and cannot be verified remotely, making it inadequate for digital commerce and financial services. The consequences of this identity infrastructure deficit were significant. The World Bank's 2021 Cambodia Financial Inclusion Survey found that 41% of unbanked Cambodians cited "lack of required documents" as a barrier to opening a financial account. Know Your Customer (KYC) processes at banks typically required in-person visits with original documents, multiple photocopies, and 3-7 days of manual verification. The cost of onboarding a single customer ranged from USD 5-15 for banks and USD 2-5 for microfinance institutions, making low-value accounts economically unviable. CamDigiKey was designed to solve these problems by creating a digital layer on top of the existing physical ID system. Rather than replacing the national ID card, CamDigiKey extends it into the digital realm, allowing remote verification, electronic signing, and authenticated access to government and private sector services. This layered approach avoided the political and logistical complexity of issuing a new physical identity document to 11 million adults.

CamDigiKey implements a federated identity architecture based on the OpenID Connect (OIDC) protocol, the same standard used by Google, Apple, and Microsoft for consumer identity services. The system comprises four core components: the CamDigiKey Identity Provider (IdP), the Mobile Authentication App, the Enrollment Infrastructure, and the Relying Party Integration Framework. The Identity Provider is the central server infrastructure operated by the MPTC that stores verified identity records, manages authentication sessions, and issues identity tokens. It implements the full OpenID Connect 1.0 specification with support for Authorization Code Flow with PKCE (for mobile apps and web applications), Client Credentials Flow (for server-to-server identity queries), and Hybrid Flow (for applications requiring both immediate identity assertions and backend token exchange). The Mobile Authentication App, available for Android (version 8.0+) and iOS (version 14+), stores the user's digital credential in the device's hardware-backed secure enclave. The credential includes a cryptographic key pair where the private key never leaves the secure enclave. Authentication requests are signed by the private key and verified by the IdP using the corresponding public key, ensuring non-repudiation and preventing credential cloning across devices.

CamDigiKey enrollment follows a rigorous identity proofing process designed to achieve Identity Assurance Level 3 (IAL3) under the NIST SP 800-63 framework, requiring in-person appearance with government-issued photo identification and biometric capture. The enrollment process takes approximately 10-15 minutes and can be completed at any of the 450 enrollment centers nationwide, including Ministry of Interior branch offices, selected bank branches, and mobile enrollment units deployed to rural areas. The enrollment process comprises five steps. First, the applicant presents their Khmer national ID card, which is scanned and verified against the Ministry of Interior's civil registry database via CamDX. Second, biometric data is captured: a facial photograph using a calibrated camera, and fingerprints from all ten digits using a certified optical scanner. Third, the biometric data is matched against the civil registry record to confirm that the applicant is the legitimate holder of the presented ID card. Fourth, the applicant downloads the CamDigiKey mobile app and creates a PIN. Fifth, the enrollment officer activates the digital credential, binding it to the applicant's device and generating the cryptographic key pair in the device's secure enclave. The MPTC has set a target of 8 million enrolled users by end of 2027, representing approximately 75% of the adult population. To accelerate enrollment, the MPTC is partnering with banks and MFIs to co-locate enrollment stations at financial institution branches, incentivizing enrollment by linking it to account opening processes.

Service providers (Relying Parties) integrate with CamDigiKey using standard OpenID Connect flows, minimizing the technical complexity of adopting national digital identity. The integration process involves registering as a Relying Party with the MPTC, receiving client credentials (client_id and client_secret), and implementing the appropriate OIDC flow based on the application architecture. For web applications, the Authorization Code Flow with PKCE is recommended. The user clicks "Log in with CamDigiKey" on the service provider's website, which redirects to the CamDigiKey authorization endpoint. The CamDigiKey IdP sends a push notification to the user's mobile app requesting biometric authentication (facial recognition or fingerprint). Upon successful authentication, the IdP redirects back to the service provider with an authorization code, which is exchanged for an ID token and access token containing the user's verified identity attributes. The ID token includes standard OIDC claims (sub, name, email if registered) plus Cambodia-specific claims: national_id (Khmer ID number), date_of_birth, gender, and address_province. Service providers can request additional claims through the CamDX data exchange layer, subject to user consent. The access token enables API calls to retrieve additional identity attributes or to verify the user's identity for specific transactions (e.g., signing an electronic contract). For financial institutions implementing eKYC, the authentication flow includes an additional step: real-time liveness detection where the user must perform a random head movement or blink pattern during biometric capture, preventing photo or video replay attacks.

The NBC's mandate requiring all financial institutions to implement CamDigiKey-based eKYC by mid-2026 represents the single largest driver of CamDigiKey adoption and the most significant integration project for Cambodia's banking sector. The eKYC framework, defined in NBC Prakas B7-025-110, specifies the minimum identity verification requirements, data fields, and security standards that financial institutions must implement. The eKYC process replaces traditional paper-based KYC with a digital workflow that can be completed remotely in under 5 minutes. The customer initiates account opening through the bank's mobile app or website. The app redirects to CamDigiKey for identity authentication with liveness detection. Upon successful authentication, the bank receives the customer's verified identity attributes (name, ID number, date of birth, address, photograph) directly from the CamDigiKey IdP. The bank's systems automatically populate the KYC form, perform AML/CFT screening against sanctions lists and PEP databases, and return an instant decision. The NBC estimates that eKYC reduces customer onboarding costs by 60-70% compared to manual processes. For banks, the average KYC cost drops from USD 8-15 per customer to USD 2-4. For microfinance institutions serving rural populations, the cost reduction is even more significant, from USD 3-5 per customer to under USD 1. This cost reduction makes previously unviable customer segments economically attractive, directly supporting financial inclusion goals. CamFinTech provides eKYC integration consulting for financial institutions, covering CamDigiKey OIDC implementation, AML/CFT screening integration, workflow design, and NBC compliance documentation.

While CamDigiKey provides core identity verification (who is this person?), CamDX enables identity data enrichment (what do we know about this person from government records?). Financial institutions and enterprises can query CamDX services using the CamDigiKey-verified identity to retrieve supplementary data points that enhance risk assessment and streamline service delivery. Key CamDX identity-related services include: Ministry of Interior civil registry queries (marriage status, dependents, address history), Ministry of Commerce business registration lookups (for business owners opening corporate accounts), General Department of Taxation TIN verification and tax compliance status, Ministry of Land Management property title searches (relevant for collateral assessment), and Ministry of Labour employment verification. Each CamDX query requires user consent, captured through the CamDigiKey consent management framework. The technical integration pattern involves a two-step process. First, the enterprise authenticates the user via CamDigiKey and obtains the verified national ID number. Second, the enterprise uses the national ID number to query relevant CamDX services, authenticated using the enterprise's X.509 certificate and authorized by the user's consent token. CamDX returns the requested data in JSON format, encrypted end-to-end between the data source agency and the requesting enterprise. This integrated identity and data architecture enables scenarios that were previously impossible or prohibitively expensive: instant mortgage pre-qualification (combining identity verification with property title search and tax history), real-time business credit assessment (combining owner identity with business registration and tax compliance data), and automated insurance underwriting (combining identity with health records when CamHealth launches in Phase 2).

CamDigiKey's digital certificate infrastructure enables legally valid electronic signatures under Cambodia's Law on Electronic Commerce (2019) and the Sub-Decree on Electronic Signatures (2023). The law establishes three tiers of electronic signatures: simple electronic signatures (typed name or scanned signature image), advanced electronic signatures (linked to the signer and capable of detecting subsequent changes), and qualified electronic signatures (created using a qualified certificate issued by a trusted service provider). CamDigiKey supports advanced electronic signatures using the device-bound cryptographic key pair. When a user signs a document, the CamDigiKey app hashes the document content, signs the hash with the user's private key stored in the device's secure enclave, and attaches the digital signature along with the CamDigiKey certificate to the document. The recipient can verify the signature using the CamDigiKey public key infrastructure. For financial services, electronic signatures enable remote contract execution, loan agreement signing, account opening authorization, and regulatory filings without physical presence. The NBC has confirmed that CamDigiKey-based electronic signatures are acceptable for all financial service agreements, provided the signature meets the advanced electronic signature standard. This confirmation eliminates a major barrier to fully digital financial service delivery. CamFinTech advises enterprises on implementing electronic signature workflows that comply with Cambodian law, integrate with CamDigiKey, and maintain legally defensible audit trails. Our consulting covers document preparation, signature placement, certificate validation, and long-term signature preservation using PAdES (PDF Advanced Electronic Signatures) format.

CamDigiKey's design incorporates privacy-preserving principles that balance the need for verified identity with the protection of personal data. The system implements the principle of data minimization: Relying Parties can only request identity attributes that are necessary for their specific service, and users must consent to each data sharing request. The CamDigiKey IdP logs all data access events, creating an audit trail that users can review through the mobile app. The consent management framework allows users to grant, review, and revoke consent for data sharing with each Relying Party. Consent is granular at the attribute level: a user might consent to share their name and date of birth with a bank but withhold their address. Revoked consent immediately prevents the Relying Party from accessing the user's data through CamDigiKey, although data already obtained and stored by the Relying Party is subject to the Relying Party's own data retention policies. The Draft Personal Data Protection Law (expected passage in 2026) will strengthen the legal framework for identity data governance. Key provisions relevant to CamDigiKey include: mandatory data protection impact assessments for identity verification services, a requirement for the MPTC to appoint a Data Protection Officer, restrictions on cross-border transfer of identity data, a right to data portability (allowing users to transfer their verified identity to alternative providers if competition is introduced), and penalties for unauthorized access or disclosure of identity data. Enterprise Relying Parties should implement data protection practices that anticipate the forthcoming law, including privacy impact assessments, data minimization policies, retention schedules, and breach notification procedures. CamFinTech provides data governance consulting tailored to Cambodia's evolving regulatory landscape.

Cambodia's CamDigiKey must operate within an increasingly interconnected ASEAN digital identity landscape. The ASEAN Digital Economy Framework Agreement (DEFA), signed in 2024, includes provisions for mutual recognition of digital identity credentials among member states. This means that CamDigiKey-verified identities may eventually be recognized by Thai, Malaysian, Singaporean, and other ASEAN digital identity systems for cross-border service access. Technically, interoperability requires alignment on several standards. CamDigiKey's use of OpenID Connect is advantageous, as it is the most widely adopted protocol among ASEAN national identity systems. The ASEAN Digital Identity Working Group is developing a common trust framework that specifies minimum identity assurance levels, biometric quality standards, and certificate interoperability requirements. Cambodia's CamDigiKey meets or exceeds most proposed requirements due to its IAL3 enrollment process and FIDO2-compatible authentication. Practical interoperability use cases include: cross-border financial account opening (a Cambodian citizen opening a bank account in Thailand using CamDigiKey credentials), cross-border e-commerce (verified identity for high-value purchases across ASEAN platforms), and cross-border government services (Cambodian workers accessing social services in Malaysia using CamDigiKey). These use cases align with Bakong's cross-border payment corridors, creating a unified cross-border digital service experience.

The MPTC's CamDigiKey roadmap extends through 2030, with progressive capability expansions that will deepen the system's role in Cambodia's digital economy. The near-term roadmap (2026-2027) focuses on three priorities: achieving 75% adult enrollment through expanded enrollment infrastructure and financial institution partnerships, launching CamDigiKey for foreign nationals holding valid Cambodia visas, and introducing organizational identity credentials (CamDigiKey for businesses) that link enterprise identities to responsible persons. The medium-term roadmap (2027-2028) introduces advanced capabilities: verifiable credentials that allow users to carry government-issued attestations (educational degrees, professional licenses, health certificates) in their CamDigiKey wallet, programmable consent that enables automated data sharing based on predefined rules (e.g., automatically sharing updated address data with financial institutions), and integration with the planned CamHealth system for health identity and insurance verification. The long-term vision (2029-2030) encompasses decentralized identity features where users control their identity data without central intermediation, cross-ASEAN identity federation under the DEFA mutual recognition framework, and AI-powered identity services including continuous authentication (replacing point-in-time verification with ongoing behavioral biometrics) and predictive identity risk scoring. For enterprises, the strategic implication is clear: CamDigiKey will evolve from a simple authentication tool into a comprehensive digital trust platform. Companies that build flexible, standards-based CamDigiKey integrations now will be positioned to adopt new capabilities as they launch, while those that implement rigid, minimum-viable integrations will face repeated re-engineering. CamFinTech provides strategic CamDigiKey roadmap consulting to help enterprises plan their identity infrastructure investments.