A request from the European Commission to the European Union Agency for Cybersecurity addresses main strands for work on the European Digital Identity Framework, which was passed in May 2024. The second iteration of the framework established grounds for interoperability between the digital identities of member states by 2026. However, the requirements continue to be harmonised, with ENISA being called to support the establishment of national certification schemes.
The agency will be involved in implementing acts establishing a list of reference standards, specifications and procedures for the purpose of expressing detailed technical specifications of those requirements.
It requests ENISA to prepare a candidate European cybersecurity certification scheme for the EUDI Wallets and their eID schemes under the Cybersecurity Act.
The eUICC certification would be one possibility to support the certification objectives of the EUDI Wallets, in cooperation with the EU Member States.
It has already been supporting the eIDAS Expert Group and its Certification Subgroup.
Moreover, ENISA has been supporting the EUDI Toolbox the last 3 years providing advice on digital wallets threats and security requirements.
