Sam

Lots of confusion about the #EUDIW jargon, so to recap: a Wallet Unit (WU) is a specific configuration of a Wallet solution. A WU comprises a Wallet Instance (WI), a Wallet Secure Cryptographic Application (WSCA) and a Wallet Secure Cryptographic Device (WSCD) #eIDAS

This obsession to continuously shorten the validity period of TLS certificates is just baffling. Claims to improve security without any actual evidence, and not a word about service disruption due to renewal failure...

Thanks to #eIDAS, you can now receive your traffic tickets in electronic format via #QeRDS. Happy new year! 😁

Why quantum computers are probably not a threat worth your time and money (source: ches.iacr.org/2024/Jaques_CH…)

You will be able to use EU Digital Identity Wallets to access digital services, including certain private services. Providers of private services must accept the wallets at the request of the wallet user where strong user authentication is required.

The first five Implementing Acts for the European Identity Wallet (Art. 5a & 5c #eIDAS 2 - Regulation) have been published in the EU Official Journal! They will enter into force (triggering the 2-year implementation period) as X-mas present on 24th Dec.: eur-lex.europa.eu/search.html?SU…

Draft ETSI TS 119 471 V0.0.11 (2024-11) Policy and Security requirements for Providers of Electronic Attestation of Attributes Services docbox.etsi.org/esi/Open/Lates… 欧州のeIDAS2.0 は、DIWに限らず、「属性証明」に向かっていて、これは重要だよ。

The last 5 implementing acts on the #EUDIW are now up for public consultation until 27/12: ec.europa.eu/info/law/bette… Have a look and send your comments ! 🇪🇺 #eIDAS #eIDAS2 #EUWallet

@Tweetddale @Joerg_Lenz LOL absolutely not, where did you get such hilarious nonsense ? Can't wait to tell the actual IA team, they will laugh pretty hard at that🤣

@sam280 @Joerg_Lenz @sam280, respectfully, Steffen is leading the writing of the actual Implementing Acts on these topics. Probably not the best to refer to him as a fake self-proclaimed expert 🙃

Apparently some work is needed to make the ARF more comprehensible 🙁 QEAAs are not "Substantial LoA" credentials, and PID is not a special kind of "High LoA" QEAA that relies on a QTSP.

@NachoAlamillo ⬆️ an actual #eIDAS expert😀

@sam280 You’re right: even if QEAAs are accepted by MS for identification purposes, they are not electronic identification means from a legal perspective and, thus, they don’t have any LoA

@Joerg_Lenz Nice, someone already noticed that PuB-EAA are missing from the diagram😀👍

@Joerg_Lenz The opinion of a fake self-proclaimed expert is irrelevant to me 🙂 This diagram is wrong on many aspects, which hopefully will get clarified when the first implementing acts are published (soon). An hopefully QTSPs have a better understanding of where their opportunities lie.

@R_Garavaglia That's what I'm trying to do :) these topics were discussed during the negotiations on art. 5a and 5c of the regulation, but not at the level of implementing acts where this committee took place.

@sam280 As I wrote, please correct me If I was wrong

📢 THE FIRST FIVE IMPLEMENTING ACTS REGARDING EUDI WALLET HAS BEEN VOTED On November 21, 2024, the 3rd #eIDAS Committee meeting resulted in the adoption of five key implementing acts for the #eIDAS2 regulation. #EUDIWallet linkedin.com/posts/robertog…

The "public discussion" that D-Trust had to go through for their CCADB root store inclusion request was a disgrace. Under #eIDAS, CAB accreditation prevents random internet bullies from harassing respectable QTSPs. groups.google.com/a/ccadb.org/g/…

Now is your chance to get a first look at how EU Digital Identity Wallets will work thanks to a new video series 🔁 . You can watch the first intro video below, and stay tuned for explainers on the privacy dashboard, digital documents, and more. ⤵

@BainaA17 @AvramVali199699 France is not testing the EU Wallet, because neither the legal basis, nor the technical specifications, are complete yet. France Identité is something else.

@AvramVali199699 Yes, for now it is not mandatory. In France it is in the test phase, there are more than a million people who have downloaded the application.

In May 2024, the Japan Institute of Research released a report concerning the eIDAS, the European digital identity wallet. Here are two selected parts that are particularly interesting. The eIDAS strongly resembles what #Jasmy offers, aligning closely with Japan's recent initiatives in digital identity. #JAPAN funded 50% of pilot projects to support use cases within the European Union. These initiatives aim to simplify access to public and private services (such as opening bank accounts, registering SIM cards, and enabling cross-border payments) ahead of a large-scale deployment. The wallet would allow EU citizens to store digital identifiers and personal documents (such as ID cards, driver's licenses, and medical records) directly on their devices, like smartphones. The goal is to create a unified digital identification system, harmonizing standards and guidelines to ensure secure identification recognized in all member states. This would facilitate identity verification in various contexts, both public and private. The report also highlights adaptability to new technologies, particularly electronic services like blockchain, through mechanisms for electronic archiving and record management, integrated into mobile devices. Compliance with European regulations, especially the GDPR for data protection, is also crucial. Measures are proposed to resolve potential conflicts between regulations, particularly in cybersecurity. (#Jasmy complies with this law.) Lastly, the system aims to provide users with better control over their personal data, allowing them to choose which information to share while minimizing risks of undesirable surveillance by third parties.

@billatnapier AdES has been used in #eIDAS since 2014, it is not a new concept from #eIDAS2. And there are only 4 recognised signature formats under #eIDAS, not 5.

Advanced Electronic Signatures (AdES) have been adopted by the EU with eIDAS2, and which gives a legal standing for digital signing. With eIDAS-2, there are five signature methods. Here is XAdES (XML Advanced Electronic Signatures): asecuritysite.com/signatures/xad…

Not all TLS certificates are created equal, and a thorough applicant verification is imperative 🤷 #eIDAS #QWAC