a. eIDAS Governance and Implementation
Building trust in the online environment is key for the development of digital economy and society. This is the very purpose of the eIDAS Regulation – to provide Member States a safe and secure environment for the use of digital identities, so that European
citizens and companies are enabled to use their national eIDs when accessing public services or when doing business in another EU country. Some The Regulation (EU) N°910/2014 on electronic identification and trust services for electronic transactions in the internal market (eIDAS Regulation) was adopted by the co-legislators on 23 July 2014. The rules on trust services entered into force on 1 July 2016 and the Regulation became fully applicable only on 29 September 2018 when the obligation on cross border recognition of electronic identification means entered into force.
Cooperation Network, peer review and notifications
The main forum to ensure the necessary cooperation between Member States and to engage them in a formalised manner to cooperate vis-à-vis the practicalities of the maintenance of the interoperability framework is within the Cooperation Network. One of the most important dimensions of this cooperation is the peer-review process, preceding the formal notification of the eID schemes, which is a mechanism designed to ensure interoperability and security of notified electronic identification schemes. The peer-review process should
result in building sufficient trust and provide reassurance to the Member States that the notified eID schemes can be used in full confidence at cross border level.
Out of the 13 MS that, to date, have undertaken the notification process, 9 MS have completed it (DE, IT, HR, EE, ES, LUX, BE, PT and UK) while 4 MS (CZ, NL, LV and SK) are in different stages of the pre-notification and peerreview.
IT and BE have launched their second notification process. In terms of coverage, more that 60% of the EU citizens are already today or will soon be able to use their eIDs to access online public services in other EU countries.
The rolling out of eIDAS Regulation is based on technical interoperability infrastructure for eID (under CEF) and for trust services is supported by the use of technical standards (by ETSI, CEN/CENELEC and ISO), and often anchored in secondary legislation.
eIDAS Infringements, state of play
No cases concerning the infringement of the eIDAS Regulation has been referred to the Court.
b. eIDAS Mainstreaming: an intergrated approach with other key EU legislations
eID and financial sector
eID and on-line platforms
Wojciech Wideł, Preetam Mukherjee, and Mathias Ekstedt from our partner KTH published in IEEE Access about their work in the SOCCRATES project.
In order to ensure that the SOCCRATES platform is fit for purpose, the project will carry out three pilots to validate the platform in realistic environments. This webinar will show results and experiences from the second pilot, in which the complete SOCCRATES platform was validated in realistic (on-site) environments at Vattenfall, mnemonic and Shadowserver.
Martin Eian, Researcher, Mnemonic
Piotr Kijewski, CEO Shadowserver
Maciej Kosz, IT Security Officer, Vattenfall
SOCCRATES provides a deep dive session on the SOCCRATES platform at the ONE Conference 2022.
Within the H2020 EU project SOCCRATES a security decision support platform has been developed for Security Operation Centres (SOCs) and Computer Security Incident Response Teams (CSIRTs). This, so called ‘SOCCRATES Platform’ is targeted at organisation’s inhouse SOC and at Managed Security Service Providers (MSSP) that provide SOC services.