Trusted Digital ID Framework expansion

📢 ARF 1.5 is Here – A Big Step Forward for the 🇪🇺 📲 #EUDIWallet The Architecture and Reference Framework #ARF Version 1.5 has just been published! This update is a major milestone, aligning the ARF with the newly adopted Implementing Acts under Articles 5a and 5c of the eIDAS Regulation. ➡️ Article 5a establishes the requirements for the issuance and use of the EUDI Wallet, ensuring security, interoperability, and user control over personal data. ➡️ Article 5c defines how qualified electronic attestations of attributes #QEAA can be issued, verified, and revoked, enabling trusted digital credentials for both public and private sector services. This means the ARF now fully reflects the legal and technical requirements that Wallet Providers, Relying Parties, and Member States must follow as they implement the EUDI Wallet. One of the most impressive aspects of this release? Over 275 comments from the community—through GitHub and stakeholder feedback—have been incorporated, making this a truly collaborative effort! 💡 Roadmap is now transparent: For those looking to stay ahead of what’s coming next, there’s now a Kanban board where you can track topics under discussion and planned developments: 🔗 https://lnkd.in/eGuwfkBP 📖 Read the full ARF 1.5 here: 🔗 https://lnkd.in/evNQh4mq What’s Next for the ARF? Key areas for further discussion include: ➡️ Privacy risks and mitigations – ensuring robust data protection ➡️ Re-issuance & batch issuance of PIDs and attestations ➡️ Wallet Unit Attestation (WUA) and embedded disclosure policies ➡️ The use of pseudonyms in digital identity Other technical developments will focus on: ➡️ Digital Credential API and Zero Knowledge Proofs (ZKP) ➡️ Wallet-to-Wallet interactions and combined presentations of attestations ➡️ User-initiated data deletion requests & reporting mechanisms for unlawful data requests Further future discussions will explore: ➡️ Authentication mechanisms for Wallet access ➡️ The EUDI Wallet Trust Mark and the PID Rulebook ➡️ Transaction logs for payments and other use cases The ARF is shaping up to be a comprehensive, transparent, and collaborative framework for digital identity in Europe. Looking forward to hearing your thoughts on these updates! 🚀 #EUDIWallet #DigitalIdentity #eIDAS #ARF #Interoperability #Privacy #Lissi

Unlocking Digital Trust Across Borders: Eastern Partnership’s Cross-Border eID Pilot Official Link: https://lnkd.in/gmm25i2e The report from EU4Digital outlines a major milestone in building digital trust infrastructure across Armenia, Georgia, and Moldova - enabling citizens to authenticate into public services in other countries using their national eID. Highlights: - Successful testing of cross-border eID authentication using the eIDAS Node - Integration of ID cards, Mobile ID, and #EVOSign across #Armenia, #Georgia & Moldova - Peer-reviewed Level of Assurance (#LoA) for each eID scheme - Interoperable access to real #eServices like residence permits and government portals - Key use cases: residency, business setup, and citizen services across borders The report provides detailed recommendations for: - National eID legislation and mutual recognition frameworks - Expanded use of the eIDAS Node for legal persons and healthcare/eGov platforms - Aligning with the EU Digital Identity Wallet (#EUDI) for future interoperability As #Moldova and #Ukraine pursue #EU accession, this pilot paves the way for a unified, secure, and citizen-centric digital identity ecosystem - one that respects privacy, scales across borders, and fosters regional digital integration. #digitalIdentity #eID #crossborderservices #eIDAS #EU4digital #Interoperability #easternpartnership #trustservices #digitaltransformation #digitalgovernance #EUDIwallet

eIDAS 2.0 is set to transform digital identity across Europe. Here’s who will benefit the most and what hurdles still need to be overcome. In one of the latest Dock Labs’ events, we explored this topic with Viky Manaila 💯 (Trust Services Director at the Intesi Group) and Vedran Lalic (Digital Identity Consultant at the World Bank). Here are my notes from these experts: 🥇 The Big Winners: Who Benefits from eIDAS 2.0? eIDAS 2.0 impacts everyone—from governments to businesses to regular citizens. But some industries are in for a major upgrade: > Financial Services: KYC that doesn’t take forever, reduced fraud, and instant onboarding. Verifying customers will be fast, secure, and compliant. > Travel & Transportation: No more juggling boarding passes, IDs, and tickets. With digital ID wallets, it’s all in one place—frictionless travel from booking to boarding. > Public Services: Citizens can verify their identity online for healthcare, tax filings, and social security. Governments will deliver better and more efficient services to citizens, reducing bureaucracy and increasing trust in public administration. > Customs & Border Control: Faster, more secure customs clearance for businesses and travelers. EU Digital ID wallets will store certificates, invoices, and attestations, making cross-border trade much more efficient. > Online Services: Faster checkout and reduced fraud. 🧗🏻♀️ The Hurdles: What Still Needs to Be Overcome? While the opportunities are huge, eIDAS 2.0 isn't without its challenges: > Fragmented Implementation: Different member states are moving at different speeds. Some nations, like Estonia, are digital ID pioneers, while others are just starting out. Achieving interoperability across borders will be key. > Complex Compliance and Technical Requirements: eIDAS 2.0 introduces new technical standards that businesses must meet such as ensuring privacy-by-design and complying with strict penalties for data mishandling, organizations face a steep learning curve. > User Adoption and Trust: Citizens need to feel confident that their data is secure. Privacy concerns and a lack of trust could slow adoption, governments and businesses need to communicate the benefits clearly. > Legacy Systems in Larger Countries: Countries like Germany and France are struggling to integrate eIDAS 2.0 due to outdated legacy IT systems. Modernizing infrastructure will be critical to successful adoption. 🖼️ Why This Matters: The Bigger Picture For citizens, eIDAS 2.0 means control over personal data. For businesses, it’s a chance to build trust and efficiency. Verifiable credentials reduce fraud, speed up onboarding, and streamline operations. And for governments, it’s about delivering better services while cutting down on inefficiencies. Bottom line: eIDAS 2.0 is more than just compliance—it’s a goldmine of opportunities. The question isn’t whether it will impact your industry. It’s how fast you’ll move to seize the benefits.

Digital ID: The Single Most Transformative Economic Investment Papua New Guinea Can Make Did you know? PNG’s FATF Grey Listing is directly tied to weaknesses in customer identification under the AML/CTF Act. The fix? Digital ID. Also, Social media monetization for PNG’s creators requires proof of identity. The fix? Digital ID. And over 4.5 million eligible Papua New Guineans remain unbanked (National Financial Inclusion Strategy). The fix? Digital ID Digital Government services cannot scale without secure identity. The fix? Digital ID A strong Digital Economy? Impossible without Digital ID at its foundation. Traditional investments in roads and bridges connect us physically. But Digital ID connects every Papua New Guinean to the financial system, government services, and the global systems and economy. Here’s how a modern Digital ID system works: 🔹 Self-Enrollment – citizens register themselves anytime, anywhere. 🔹 Self-Proofing – digital verification cuts fraud and builds trust. 🔹 Digital Issuance – instant and secure electronic credentials. 🔹 Digital Use – one interoperable ID that works across banks, telcos, government, transport, and online platforms. Digital ID is not merely ID in digital form, its about the entire identity ecosystem through an interoperability platform: ➡️ Data custodians like NID, MVIL, ICSA plug in. ➡️ Private sector players — banks, telcos, real estate, utilities — also plug in. ➡️ Even international partners can rely on it for trusted transactions. The economic impact? ✅ Restoring global confidence in PNG’s financial system — essential for exiting the FATF Grey List. ✅ Bringing millions into the banking and payments system, unlocking savings, credit, and investment. ✅ Enabling creators, SMEs, and farmers to fully participate in the digital economy. ✅ Driving GDP growth of 2–3% annually, based on global studies of Digital ID adoption. When I talk about Digital ID, people respond to me refering to it as a digital initiative - it is much more than that - it is in fact the single most transformative economic digital infrastructure investment Papua New Guinea can make.

🇫🇷 🤝🏻🇩🇪 : joint French-German proposals by our cyber agencies ANSSI - Agence nationale de la sécurité des systèmes d'information and the Federal Office for Information Security (BSI) Security on a decisive topic : the European digital Identity wallet 🇫🇷 ANSSI and 🇩🇪 BSI issued a new joint paper on remote identity verification ⭐️Following an initial joint publication in 2023, ANSSI and BSI are now releasing a new joint document aligned with the updated European regulatory framework. 🌍 Last month, Director General of ANSSI @Vincent Strubel & German counterpart Claudia Plattner reaffirmed the trusted relationship between #ANSSI and #BSI on the topic of remote identity verification. 📈 Since February 2024, the regulatory shift introduced by eIDAS 2 has brought forth the #EU Digital Identity Wallet, which may be issued based on remote identity verification. At the same time, cyber threats have continued to evolve, and European standardisation work on remote identity verification has progressed. Key takeaway =a secure and trusted EUDI Wallet depends on: 🔹Strong, harmonized standards 🔹Advanced defenses against remote attacks 🔹Cross-border interoperability and regulatory support. 🛡️ High Assurance is Essential for EUDI Wallet Onboarding. Remote identity proofing, particularly video-based methods, are being explored as alternatives to national eID systems but present significant technical and security risks. 🎯 3️⃣ Critical Verification Goals to ensure trustworthiness: 🔹Biometric genuineness 🔹Document authenticity (genuine, current, and physically possessed) 🔹Face matching (the face matches the ID document photo). ⚠️ 2️⃣ major categories of attacks: 🔹Presentation Attacks: use of photos, masks, or replayed videos in front of the camera. Exploit the fact that many ID document security features are not verifiable remotely. 🔹 Injection Attacks : Bypass the camera using pre-recorded or AI-generated data; Deepfakes and synthetic documents pose increasing challenges. ✅ Recommendations for Strengthening the Ecosystem 🔹Harmonise Evaluation Criteria -Establish pan-European test specifications directly mapped to LoA High. -Mandate biometric attack testing in evaluations 🔹Bridge the Document Verification Gap -Develop standards for remote verification of ID documents. -Promote chip reading over OCR where legally possible. -Ensure legal frameworks enable conformity assessment bodies to perform robust testing. #cyber #scybersecurity #Europe

🇬🇧🆔UK Establishes Office for Digital Identities and Attributes (OfDIA) to Oversee Trusted Digital Identity Ecosystem The UK government has launched the Office for Digital Identities and Attributes (OfDIA) within the Department for Science, Innovation and Technology (DSIT) to ensure a secure, inclusive, and transparent digital identity market. This initiative aims to bolster trust, encourage market growth, and foster digital identity standards that benefit citizens and businesses alike. Key Takeaways: 🎯 Strengthening Trust and Governance: OfDIA will manage the governance of the UK’s digital identity ecosystem, establishing transparent systems and a trust framework that help citizens have control over their digital identities while encouraging economic growth. 🎯 Expanding Use Cases and Market Innovation: OfDIA will collaborate with both private and public sectors, including Whitehall, to identify new digital identity use cases. This will ensure benefits for citizens and businesses and broaden applications across sectors. 🎯 Global Interoperability Efforts: To make UK digital identities compatible on a global scale, OfDIA will participate in international initiatives, helping to create interoperable and reusable identity solutions. 🎯 Commitment to Inclusivity: OfDIA will work to promote digital identity solutions that are accessible to all users who choose to adopt them, supporting market growth while ensuring inclusivity. 🎯 Collaboration with Consumer Groups: OfDIA intends to engage with UK consumer groups, ensuring systems are reliable and that clear support processes are available for users, especially if issues arise. 🎯 Monitoring Market Growth and Trends: By tracking the digital identity market’s growth, adoption, and innovation, OfDIA will gather insights on evolving trends, guiding future policy adaptations to meet market demands. 🎯 Supporting Identity Verification through Public Data: OfDIA will explore ways to leverage public authority data for identity verification, enhancing the accuracy and trustworthiness of digital identity solutions. 🎯 Establishing a Trusted Framework Within DSIT: While some stakeholders suggested separate governance, DSIT will house OfDIA for now, prioritizing rapid market development and oversight. #DigitalIdentity #DigitalIdentities Blog Government UK - Enabling Digital Identity https://lnkd.in/e_DYB-Gm

🚀 A significant milestone for trusted digital identity in Europe! The ETSI Technical Specification TS 119 471 on Electronic Attestation of Attributes (EAA) has just been approved in committee vote and will be published soon. This upcoming standard defines policy and security requirements for EAA services — a cornerstone for the European Digital Identity Wallet under the revised eIDAS regulation. It lays the groundwork for secure, privacy-preserving, and interoperable digital attributes that can be trusted across borders and sectors. 👏 Congratulations to ETSI and especially to the rapporteur Paloma LLaneza  for expertly guiding this work. This is a major step toward enabling a unified European approach to digital identity and trust services. #eIDAS #ETSI #DigitalIdentity #EAA #TrustServices #EUDIW #Standardization #DataProtection #DigitalEurope Obserwatorium.biz