eIDAS 2.0: Evolution of trust services
Read more
Reading time:
Date of publication:
In the ever-evolving landscape of digital identity and authentication, staying abreast of regulatory changes is paramount. The European Union's eIDAS regulation has been a cornerstone in facilitating secure electronic transactions across borders within the EU. With the introduction of eIDAS 2.0, there are significant updates and enhancements that warrant exploration.
eIDAS 1.0 adopted in 2014 stands for "Electronic Identification, Authentication, and Trust Services". Its primary objective was to establish a framework for electronic identification and trust services for electronic transactions in the European Single Market.
Key provisions of eIDAS 1.0 includes:
eIDAS 2.0 is an updated version of the European Union’s eIDAS (Electronic Identification, Authentication, and Trust Services) regulation, which aims to enhance the framework for secure electronic transactions across EU Member States. Building on the foundation of the original eIDAS regulation, adopted in 2014, eIDAS 2.0 introduces new provisions to address emerging challenges and opportunities in the digital landscape. Key updates include the introduction of the European Digital Identity Wallet, new trust services like attribute attestation and ledger services, and stricter security requirements. The goal of eIDAS 2.0 is to foster greater trust, security, and interoperability in electronic identification and trust services, facilitating seamless cross-border digital interactions within the EU.
eIDAS 2.0 extends the scope of Trust Services adding new regulated services to the list, such as:
Key differences and enhancements in eIDAS 2.0:
Amendment of the eIDAS Regulation presents both challenges and opportunities for providers, businesses, governments, and citizens alike. It is worth mentioning, that while adapting new technology may require some investments, the benefits of enhanced security, interoperability, and digital innovation of trust services cannot be overstated. The legal safeguards (effects and presumptions) assigned to each trust service are a unique tool to help cover the risks of both consumers and businesses.
As we navigate the digital transformation journey, eIDAS continues to be a cornerstone in building trust and facilitating secure electronic transactions by using services provided by qualified and non-qualified providers. The transition to eIDAS 2.0 marks a significant milestone in this journey, paving the way for a more secure, interoperable, and innovative digital future. Especially when ESG regulations and requirements are expanding across business.
By understanding the differences between eIDAS 1.0 and eIDAS 2.0, businesses and governments can leverage the opportunities presented by the new regulation to drive digital growth and empower citizens in the digital age.
The amendment to the eIDAS Regulation entered into force on 20 May 2024, however, it also includes transitional periods or deadlines for the European Commission to develop implementing acts for specific trust services. For example, Article 5a of the eIDAS Regulation obliges EU Member States to provide at least one European Identity Wallet within 24 months of the entry into force of implementing acts setting out reference standards.
Learn how we can help you speed up your business processes by using Trust Services described in eIDAS and to implement compliant document workflow solutions. Schedule a free expert consultation here:
Sources:
https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32024R1183
https://data.consilium.europa.eu/doc/document/PE-68-2023-INIT/en/pdf
Agata Kolorz
Information Security Compliance Manager, Data Protection Officer (DPO)
Visit author's profileAgata Kolorz
Read more
Wojciech Kosmala
Read more
Monika Głowacka
Read more