Hawiya
Hawiya Digital Palestine Identity
Digital Palestine Identity Commission

One identity for a
digital Palestine.

هويّة

Hawiya is the sovereign identity service of Digital Palestine. One account, held by the person it belongs to, recognised across every Palestinian digital service, and hosted under jurisdiction we control.

Open the console Learn more
Hawiya, the Digital Palestine Identity Commission
What Hawiya is

The foundation everything else is built on.

Hawiya is an identity provider. People register once and use that single identity to sign in to independent services. It begins as an internet identity for vetted partners over open standards, and grows toward a high-assurance citizen identity. Every other part of the platform binds to it, so it is built first, sovereign and standalone.

One account

A durable identifier issued once and carried for life. Services depend only on the public keys and the subject, never on a private database.

Open standards

OpenID Connect and OAuth 2.0, the same protocols the wider internet uses. Any service can integrate without a custom contract.

Earned trust

Verification is not a switch a person flips. It is assembled from attestations issued by institutions, communities, and the state.

Principles

Built to be owned, not rented.

The choices below are not features. They are commitments about who controls the identity of a people, and they are made at the foundation so nothing above has to revisit them.

Sovereign from day one

Self-hosted on European-jurisdiction infrastructure, away from companies whose home law could compel disclosure. Identity is the crown jewel, so it becomes sovereign first.

Attestation-based

Trust is a graph of signed evidence, not a self-declared tier. Issuers vouch, verifiers check, and the holder carries the result.

Crypto-agile

Every algorithm is named and rotatable. The path to post-quantum signatures and key exchange is open, with no primitive hard-wired.

Verifiable record

Every authentication, consent, and privileged action is written to a tamper-evident, hash-chained log built once and reused across the platform.

The person holds the key

Passkeys and device-bound credentials, so the server never holds the secret that proves who you are. A foundation for private, coercion-resistant services later.

One contract, many services

Relying parties integrate against a single, stable identity contract. New services join without anyone re-integrating.

How it works

Issuers vouch. Hawiya holds. Services verify.

A person registers and holds their identity. Institutions and communities issue attestations about them. Services ask Hawiya to confirm who the person is and what has been attested, and receive only what the person consents to share.

Personregisters once, holds their own credential
Issuersinstitutions, communities, the state, sign attestations
Hawiyathe authority that authenticates and assembles trust
Servicesverify the identity over open standards
The shared contract every service depends on is the identity subject and the public signing keys. sign in with Digital Palestine ID
Status

In active development.

Hawiya is being built in the open as the first component of the wider Digital Palestine platform. The authentication core is live in a development environment today.

  • OpenID Connect authority, live over TLS
  • Passkeys and email one-time codes
  • Self-hosted PostgreSQL, sovereign infrastructure
  • Attestation and citizen-identity layers, next
Digital Palestine, Hawiya, and Yafa

Part of the Digital Palestine ecosystem