System and method for checkpoint access using mobile identification credential for international travel

What is claimed is: 1. A method for a user having a user device to request user access from a provider having a provider system, the method comprising: connecting the provider system to one or more readers; establishing a local connection between the user device and the provider system via the one or more readers; receiving, by the provider system from the user device, a request for user access through a checkpoint; sending, by the provider system to the user device, a request for identification information of the user; receiving, by the provider system, part or all of user information associated with a mobile identification credential (MIC) which the user device received from an authorizing party system (APS), the user having consented to release the part or all of user information to the provider system, the part or all of user information associated with the MIC comprising at least one of identity or privilege pertaining to the user, and the part or all of user information having been verified by the APS; using, by the provider system, the verified part or all of user information associated with the MIC to verify or not verify an identity of the user; and verifying the identity of the user, by the provider system, before granting the user the request for user access through the checkpoint; the APS being a separate system from the provider system. 2. The method of claim 1 , wherein: the MIC comprises a Digital Travel Credential (DTC) pass having the at least one of identity or privilege pertaining to the user; and the APS comprises a DTC pass issuer. 3. The method of claim 2 , wherein verifying the identity of the user by the provider system comprises at least one of: verifying that the DTC pass includes a DTC digital signature from the DTC pass issuer; comparing a live picture of the user for a 1-to-1 match against a portrait image of the user included in the DTC pass; or confirming that the user device holds a private key which is associated with the DTC pass and was issued by the DTC pass issuer. 4. The method of claim 3 , further comprising: receiving, by the provider system, a signer certificate from the DTC pass issuer; wherein the provider system is configured to perform at least one of verifying that the DTC pass includes a DTC digital signature from the DTC pass issuer based on the signer certificate; or confirming that the user device holds a private key which is associated with the DTC pass and was issued by the DTC pass issuer based on the signer certificate. 5. The method of claim 2 , wherein the DTC pass comprises: DTC data and a signed DTC pass mobile security object (MSO) of the DTC pass for the user's use; wherein the DTC data includes biometric and biographic data from the user's passport; and wherein the signed DTC pass MSO has a validity period which is limited by at least one of a validity period of the user's passport or a preset maximum DTC pass validity period. 6. The method of claim 1 , wherein the APS is selected from the group consisting of: U.S. Department of State, a foreign ministry of another nation, Federal Government, a Federal Government agency, a private entity authorized by a governmental authority to provision the MIC, a digital identification provider, and a third-party security service provider. 7. The method of claim 1 , wherein the APS is operated by an authorizing party which is a different entity from the user and from the provider. 8. A method for a user having a user device to request user access from a provider having a provider system, the method comprising: establishing a local connection between the user device and the provider system via one or more readers connected to the provider system; sending, by the user device to the provider system, a request for user access through a checkpoint; receiving, by the user device from the provider system, a request for identification information of the user; sending, by the user device to the provider system, part or all of user information associated with a mobile identification credential (MIC) which the user device received from an authorizing party system (APS), the user having consented to release the part or all of user information to the provider system, the part or all of user information associated with the MIC comprising at least one of identity or privilege pertaining to the user, and the part or all of user information having been verified by the APS; the verified part or all of user information associated with the MIC to be used by the provider system to verify an identity of the user before granting the user the request for user access; the APS being a separate system from the provider system. 9. The method of claim 8 , further comprising: provisioning, by an Authorizing Party System (APS), the MIC onto the user device before the user device receives the request for user access from the provider system. 10. The method of claim 9 , wherein the provisioning comprises: verifying and authenticating a user identity of the user; collecting the user information associated with the user; compiling the user information into a MIC stored in a memory of the APS; authenticating the user device; and copying the MIC from the APS to the user device. 11. The method of claim 10 , wherein the MIC comprises a Digital Travel Credential (DTC) pass having the at least one of identity or privilege pertaining to the user, and wherein verifying and authenticating the user identity of the user comprises: receiving a DTC pass application from the user device for the DTC pass, by the APS as a DTC pass issuer, the DTC pass application including a selfie of the user, the user possessing a passport including biometric data and biographic data of the user; performing a biometric match of the biometric data from the user's passport and the selfie of the user; and when the biometric match is positive, authenticating the biometric data and the biographic data from the user's passport using an issuer public key. 12. The method of claim 11 , wherein authenticating the user device comprises: performing a device key challenge on the user device to ensure that the user device holds a unique private key that will be associated with the DTC Pass. 13. The method of claim 11 , wherein collecting the compiling the user information into the MIC comprises: collecting and compiling DTC data and a signed DTC pass mobile security object (MSO) of the DTC pass for the user's use into the DTC pass; wherein the DTC data includes the biometric data and the biographic data from the user's passport; and wherein the signed DTC pass MSO has a validity period which is limited by at least one of a validity period of the user's passport or a preset maximum DTC pass validity period. 14. The method of claim 8 , wherein the MIC comprises a Digital Travel Credential (DTC) pass having the at least one of identity or privilege pertaining to the user and the APS comprises a DTC pass issuer, the method further comprising verifying the identity of the user by the provider system before granting the user the request for user access, which includes at least one of: verifying that the DTC pass includes a DTC digital signature from the DTC pass issuer; comparing a live picture of the user for a 1-to-1 match against a portrait image of the user included in the DTC pass; or confirming that the user device holds a private key which is associated with the DTC pass and was issued by the DTC pass issuer. 15. The method of claim 14 , further comprising: receiving, by the provider system, a signer certificate from the DTC