MOTUS Is Half the Solution: Why Carrier Registration Isn't Enough

Published June 2, 2026 by Rootz Corp

On May 28, 2026, the U.S. Department of Transportation launched MOTUS — a new carrier registration system with biometric identity verification powered by IDEMIA, business validation through Thomson Reuters CLEAR, and federated authentication via Login.gov.

It's the biggest modernization of freight carrier registration in decades. Transportation Secretary Sean Duffy called the old system one that allowed fraud with just "an email, name, and physical address." He's right. MOTUS is a significant improvement.

But MOTUS solves registration. It doesn't solve compliance.

What MOTUS Gets Right

Real Identity Verification

The old Unified Registration System was a low-barrier, minimal-validation framework. MOTUS replaces it with IDEMIA's biometric identity proofing — the same technology TSA uses at airports. Government-issued ID scans, digital facial matching, and presentation attack detection (spoof prevention). IDEMIA ranked #1 in the DHS benchmark for selfie-to-document matching accuracy in March 2026.

Business Validation

Thomson Reuters CLEAR validates the business entity — legal name, principal place of business, ownership structure, company officials. This targets "chameleon carriers" that shut down operations to escape penalties and reopen under new names.

Scale of the Problem

FMCSA identified several thousand suspicious registration numbers tied to fraudulent carriers. All 800,000 existing registrants must re-verify through MOTUS. That's a serious cleanup.

What MOTUS Doesn't Solve

The Post-Montgomery Problem

Two weeks before MOTUS launched, the Supreme Court ruled unanimously in Montgomery v. Caribe Transport II that freight brokers can be sued for negligent carrier selection. The Court didn't say brokers need to verify that a carrier is registered. It said brokers must exercise ordinary care in selecting carriers — which means reviewing safety data, crash history, inspection records, and operational fitness at the time of each dispatch.

MOTUS verifies identity at registration. It says nothing about what happens between registration and the next fatal crash.

No Per-Dispatch Evidence

A broker dispatching a load on Tuesday needs to prove what they knew about the carrier's safety on Tuesday — not what MOTUS verified about the carrier's identity six months ago. The carrier may have been MOTUS-verified and still have:

  • A deteriorating safety rating
  • Recent fatal crashes
  • Insurance that lapsed yesterday
  • An out-of-service order issued this morning

    • None of this is captured by MOTUS. None of it shows up in the registration system. And all of it is exactly what a plaintiff's attorney will ask about in discovery.

    No Cryptographic Proof

    FMCSA still does not cryptographically sign its safety data. The carrier census, crash file, inspection records, and BASIC scores are database entries — not signed documents. There's no way to prove what the data showed at a specific moment without taking a screenshot and hoping the court accepts it.

    No Driver or Vehicle Verification

    MOTUS verifies the company. It does not verify that the specific driver behind the wheel has a valid CDL, a current medical certificate, and a clean drug test. It does not verify that the specific truck has passed inspection. Post-Montgomery, those details matter.

    Two Layers of Trust

    The freight industry now needs two things, not one:

    LayerWhat It ProvesWhenSystem
    IdentityThis carrier is who they claim to beAt registrationMOTUS (IDEMIA + CLEAR + Login.gov)
    ComplianceThis carrier is safe to dispatch to right nowAt every dispatchFreightProof (SHA-256 + timestamp + wallets)

    Identity verification is necessary but not sufficient. A carrier can be perfectly legitimate (MOTUS-verified) and still be unsafe to dispatch to (deteriorated safety record, lapsed insurance, unqualified driver). The first layer prevents fraud. The second layer prevents negligence. You need both.

    The NIST Zero Trust Standard

    The federal government's own cybersecurity framework — NIST SP 800-207 (Zero Trust Architecture) — requires "never trust, always verify" with continuous cryptographic attestation. MOTUS meets the identity enrollment standard. It does not meet the zero-trust standard of verifying state at every transaction.

    FreightProof applies NIST zero-trust principles to freight: every dispatch is verified independently, with cryptographic proof that doesn't depend on a database being online or a website being accurate at the moment you check.

    What This Means for You

    If you're a freight broker or carrier:

  • Complete your MOTUS verification. It's required, and it's a real improvement over the old system.
  • Don't stop there. MOTUS registration is not a defense against a Montgomery negligence claim. You need per-dispatch evidence of your vetting decisions.
  • Create proof, not process. A vetting policy document describes what you intend to do. Cryptographic proof shows what you actually did, for each specific dispatch, at the exact moment you did it.

    • MOTUS verifies who you are. FreightProof proves what you knew.

    Learn more: How FreightProof + MOTUS work together · Check a carrier now