Five experts in the field of digital identity shared their opinions and ideas on the global recognition of EU trust services at the recent Trust Services Forum, CA Day 2022.

The session saw the participation of Peter Rybár from the Department of Regulation and Supervision of the National Security Authority of Slovakia, Olivier Delos from Sealed, SK identification solutions CEO Kalev Pihl, Dennis Jackson of MozillaComment and Soshi Hamaguchi of Cosmos Corporation.

During the event, Rybár discussed examples of accessible smart national solutions in global standards.

Rybár mentioned, in particular, the ISO 14533-4:2019a certification designed to enable proof of the existence of data objects and digital signatures and the preservation of the validity state of digital signatures over a long period of time used in validation and adopted in Germany and Estonia.

The identity expert added that, in accordance with Article 17 of EU Regulation 910/2014, member states could require the oversight body to establish, maintain and update an infrastructure of trust based on ISO 14533-4:2019 and other regulations in accordance with national conditions. right.

Delos expanded on the points raised by Rybár, listing several challenges and opportunities to recognize non-EU trust services under the eIDAS regulation.

According to the Sealed executive, regardless of their origin in the world, digital signatures that meet the requirements for advanced electronic signatures and seals should not be denied any legal effect in the EU.

In addition, when they respect the formats of the executive decision of the commission (CID) (EU) 2015/1506these solutions should be recognized by the Member State requiring an advanced electronic signature to use an online service offered by or on behalf of a public sector body.

Pihl’s opinions were more polarized, with the CEO of SK ID Solutions saying the EU was trying to define how global solutions should change to suit European applications.

The executive said “this cannot be a winning strategy” and called on the EU to try to develop solutions that are at least european instead of focusing on individual Member States. Pihl added that the EU should “value capitalism and competition” and only regulate local solutions if there is no alternative.

Cosmos Corporation executive Hamaguchi first provided some background regarding digital ID and regulations in Japan, particularly regarding the elimination of carved hanko ink seals in the country. Hamaguchi also discussed the transition from what he called Society 4.0 to Society 5.0.

The transition from hunting to agriculture, industry, information and ultimately 5.0 would lead to a “human-centered society that balances economic progress with solving social problems through a system which strongly integrates cyberspace and physical space”.

This transformation is possible through several technologies, explained Hamaguchi, including autonomous vehicles, Smart citiesopen banking, artificial intelligence, robotics and advanced computing.

Standardization of EU digital identifiers

During the following session of CA Day 2022, another panel of experts discussed the certification and standardization of European digital identities.

According to Riccardo Genghini, President of ETSI ESI, the regulation of highly technical areas such as electronic identification and trust services requires a careful interaction between law and technology.

The executive said that while Directive 1999/93/EC and Regulation 2014/910/EU provide clear legal definitions for a series of fundamental characteristics of electronic signature and trust services, the same is not true. even for the eIDAS2 legislation.

Genghini believes that the lack of proper functional and security requirements in eIDAS2 will significantly affect standardization, interoperability and the single market.

Michał Tabor, Partner and Board Member of Obserwatorium.biz, also participated in the session, highlighting market trends related to the upcoming European digital ID wallet.

Tabor believes that in 2023, the digital ID wallet based on the eIDAS 2.0 project will rely on new services, including the issuance of electronic signatures and the qualified assignment of attestation, to increase the popularity of the services of trust with the public. Additionally, the digital ID wallet may see the migration of electronic ID and trust services to the cloud.

The event also saw the participation of Stéfane Mouille, senior expert in digital identities and cybersecurity and CLR Laboratories director.

Mouille highlighted the evolution of the EU digital ID wallet over the past year and concluded that while some progress has been made, several issues still need to be resolved.

He explained that an effective way to achieve this could be to follow the model established by the International Civil Aviation Organization (ICAO), in particular to verify the authenticity of data sources and confidentiality. ICAO also ensures global interoperability, which could help the EU develop the digital ID wallet infrastructure beyond its borders.

Paloma Llaneza, eIDAS & eID Scheme Manager at CerteIDAS and Fabien Deboyser, security certification expert at NXP Semiconductorsalso participated in the session.

Deboyser, in particular, said the EU digital ID wall should undergo strict testing and obtain certifications after achieving a high level of trust and security. The security expert added that offline verification should be considered (for device and verifier) ​​along with additional technologies such as crypto and ultra-wideband (UWB).

Want to know more about CA Day 2022? iProov’s Andrew Bud talked about how biometrics can help secure identity checks from remote environments.

Article topics

| | | | | |

Previous

An Update to the Isle of Man Trusts Act - Trusts

Next

Pinnacle Trust Services Announces Personnel Changes

Check Also