Biometric verification for access control using mobile identification credential

What is claimed is: 1. A method for a client having a client device to request client access from a provider having a provider system, the method comprising: establishing a secure connection between the client device and the provider system via a reader, before the client reaches an access touchpoint; receiving, by the provider system from the client device, a request for client access before the client reaches the access touchpoint; sending, by the provider system to the client device, a request for identification information of the client before the client reaches the access touchpoint; receiving, by the provider system before the client reaches the access touchpoint, part or all of client information associated with a first mobile identification credential (MIC) which the client device received from a first authorizing party system (APS), the client having consented to release the part or all of client information to the provider system, and the part or all of client information having been verified by the first APS, the client information including biometric information of the client; performing a liveness check of the client using live-captured biometric information of the client at the access touchpoint; using, by the provider system, the verified part or all of client information associated with the first MIC to determine whether the liveness check is valid or invalid; and determining that the liveness check is valid, by the provider system, before granting the client the request for client access. 2. The method of claim 1 , wherein receiving the verified part or all of client information comprises: receiving, by the provider system from the client device before the client reaches the access touchpoint, a token specifying the part or all of client information which the client has consented to release to the provider system; sending, by the provider system to the first APS, the received token, which is to be verified by the first APS with another token sent from the client device to the first APS; when the tokens are received by the first APS within a preset timeframe and are verified by the first APS, receiving, by the provider system from the first APS, the verified part or all of client information; and when the tokens are not received by the first APS within the preset timeframe or are not verified by the first APS, receiving, by the provider system from the first APS, a notification to resubmit the request for identification information of the client. 3. The method of claim 1 , wherein receiving the verified part or all of client information comprises: receiving, by the provider system from the client device before the client reaches the access touchpoint, an electronic document specifying the part or all of client information which the client has consented to release to the provider system; sending, by the provider system to the first APS, the received electronic document; when the received electronic document is verified by the first APS, receiving, by the provider system from the first APS, the verified part or all of client information; and when the received electronic document is not verified by the first APS, receiving, from the provider system from the first APS, a notification to resubmit the request for identification information of the client. 4. The method of claim 1 , wherein receiving the verified part or all of client information comprises: receiving, by the provider system from client device before the client reaches the access touchpoint, an electronic document and the part or all of client information which the client has consented to release to the provider system; sending, by the provider system to the first APS, the received electronic document; when the received electronic document is verified by the first APS, receiving, by the provider system from the first APS, an authentication key to verify the part or all of client information received from the client device; and when the received electronic document is not verified by the first APS, receiving, by the provider system from the first APS, a notification to resubmit the request for identification information of the client. 5. The method of claim 1 , wherein receiving the verified part or all of client information comprises: receiving, by the provider system from the client device before the client reaches the access touchpoint, the part or all of client information which the client has consented to release to the provider system; and receiving, by the provider system from the first APS, an authentication key to verify the part or all of client information received from the client device, based on a request sent from the client device to the first APS. 6. The method of claim 1 , further comprising: granting the request from the client, by the provider system, to provide the client access when the liveness check is valid; and denying the request from the client, by the provider system, to provide the client access when the liveness check is invalid. 7. The method of claim 1 , further comprising: sending, by the provider system to the client device, a request for client eligibility information of the client; receiving, by the provider system, part or all of client eligibility information associated with the first MIC which the client device received from the first APS or a second MIC which the client device received from a second APS, wherein the client has consented to release the part or all of client eligibility information to the provider system, and wherein the part or all of client eligibility information has been verified by the first APS or the second APS as verified part or all of client eligibility information; using, by the provider system, the verified part or all of client eligibility information to verify or not verify client eligibility of the client; granting the client the request for client access, by the provider system, when the identity and the client eligibility of the client are verified; and denying the client the request for client access, by the provider system, when the identity or the client eligibility of the client is not verified. 8. The method of claim 1 , further comprising: sending, by the provider system to an escrow provider system, a request for information showing that the client has met escrow obligations to receive the client access; receiving, by the provider system, part or all of client escrow fulfillment information associated with an escrow MIC which the client device received from an escrow APS, which is the first MIC issued by the first APS or another MIC issued by another APS, wherein the client has consented to release the part or all of client escrow fulfillment information to the provider system, and wherein the part or all of client escrow fulfillment information has been verified by the escrow APS; using, by the provider system, the verified part or all of client escrow fulfillment information to verify or not verify escrow fulfillment of the client; granting the request for client access, by the provider system to the escrow provider system, to provide to the client the client access when the liveness check is valid and the escrow fulfillment of the client is verified; and denying the request for client access, by the provider system to the escrow provider system, to provide to the client the client access when at least one of the liveness check is invalid or the escrow fulfillment of the client is not verified. 9. The method of claim 1 , wherein the client access is subject to a quantity limit, the method further comprising: granting the client the request for client access, by the provider system, when the liveness check is valid and when an accumulated quanti