Versions Compared

Old Version 1

changes.mady.by.user Amineh Akhavan Saraf

Saved on

compared with

New Version Current

changes.mady.by.user Amineh Akhavan Saraf

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Brief Description

This regulation (EU) 2025/849 defines how EU Member States must register and communicate metadata about each officially notified EUDI Wallet to:

  1. The European Commission

  2. The Cooperation Group under the eIDAS 2.0 framework

The regulation ensures technical consistency, interoperability, and public verifiability of wallet registration across the EU.

2. Key Technical

...

Concepts (optional)

1. Data to Be Transmitted

Each Member State must prepare and submit a machine-readable dataset that includes:

  • Wallet identifier (e.g., UUID or other persistent ID)

  • Country code

  • Legal issuer (organization issuing the wallet)

  • Issuance date / Validity period

  • Status of the wallet (e.g., active, revoked)

  • Compliance details:

    • Reference to technical specifications used (e.g., eIDAS-compliant modules)

    • Security assurances (certification paths, conformance to ETSI/ISO/W3C standards)

...

Format and Transmission Protocol

  • The dataset must be provided in a machine-readable format: likely JSON, XML, or a defined structured schema (e.g., based on CEF Building Blocks).

  • It must comply with a standard data model (to be maintained by the Commission), likely part of the broader EUDI Wallet Registry schema.

Example (conceptual JSON structure):

{
  "wallet_id": "urn:eu:wallet:abc123",
  "issuer": "DigitalID Authority of CountryX",
  "country": "X",
  "status": "active",
  "valid_from": "2025-10-01",
  "standards": ["ETSI TS 119 461", "W3C Verifiable Credentials"],
  "signature": "<digital signature>"
}

...

Notification and Updates


  • Wallet data must be transmitted to the Commission:

    • Upon initial notification

    • Any time a wallet is updated, suspended, or revoked

  • The information must be sent without undue delay, ensuring real-time registry integrity

...


Central Wallet List


  • The European Commission will maintain a central machine-readable list of all notified EUDI Wallets

  • This list will be:

    • Publicly accessible

    • Regularly updated

    • Published in the Official Journal of the EU and stored in structured, queryable formats

 

Key Provisions of the Regulation


4. Implications for the Education and Research Wallet in Europe

...

  • The Regulation establishes rules for the submission and publication of information on certified European Digital Identity Wallets, which directly affects wallet solutions used by public-sector services, including education and research institutions, when such wallets are certified by Member States. 
  • Education and research wallet solutions that are certified under the European Digital Identity Framework must be included in the EU‑level list of certified wallets, increasing transparency and cross‑border trust for academic and research-related digital services. 
  • The publicly available, machine‑readable list maintained by the Commission enables universities, research bodies, and public authorities to verify whether a wallet solution used for access to education or research services is officially certified, supporting legal certainty in cross‑border use cases. 

5. Privacy and Security Requirements

  • Submissions are expected to be digitally signed to ensure authenticity and integrity

  • Trust frameworks like PKI, Qualified Certificates, and/or EU Trust Lists (LOTL/TL) may be required to validate sources

...

6. Related Standards and/or Regulation

The Regulation explicitly refers to and relies on the following legal instruments:

  • Regulation

    • becomes applicable 20 days after publication in the EU Official Journal (OJEU)

  • Member States must comply immediately after that date

Summary Table:

AspectDetails
ScopeCross-border registration of notified EUDI Wallets
Submitted byEU Member States
Submitted toEuropean Commission & Cooperation Group
FormatMachine-readable (e.g., JSON, XML)
IncludesIssuer, country, validity, compliance specs, status
UsePublic registry, verification, trust infrastructure
Enforcement start20 days after OJEU publication

...

  • (EU) No 910/2014 (eIDAS), which establishes the European Digital Identity Framework and provides the legal basis for European Digital Identity Wallets and their certification.

  • Article 5d(7) of Regulation (EU) No 910/2014, which empowers the Commission to set rules for compiling and maintaining the list of certified European Digital Identity Wallets. 

  • Regulation (EU) 2016/679 (GDPR) and, where applicable, Directive 2002/58/EC, which apply to all personal data processing activities under this Regulation, including information submitted by Member States about certified wallets.

7. More Information

8. Feedback points (optional)

9. References

[eur-lex.europa.eu]