Improving the reliability of remote identity verification with the EUDI

To combine their expertise and promote European sovereignty in the field of cybersecurity, ANSSI and BSI have, from their respective inception, developed a historic relationship of mutual trust. In the context of this partnership, the two agencies have deepened their reflection and harmonised their stances on European regulation.

Within this framework, they are presently co-publishing a joint document on remote identity verification, “Remote Identity Proofing for EUDI Wallet Onboarding: Strengthening Assurance Against Evolving Threats”, following the publication in December 2023 of a first joint release on this same topic (https://cyber.gouv.fr/en/actualites/anssi-and-bsi-issue-joint-release-r…).

In order to better meet the needs of the digital market and to promote cyber governance at the European level, the eIDAS 2 regulatory framework for electronic identification and trusted services was modernised and subsequently adopted in February of 2024. The main structural change brought about by eIDAS 2 was the introduction of a European Digital Identity Wallet whose use could be supported by a remote identity-verification mechanism.

In compliance with these new regulatory guidelines, this second edition of the joint release is illustrative of ANSSI and BSI’s commitment to actively contributing to the appropriation of the European digital wallet, and to anticipating the evolution of threats associated with remote identity verification.

This publication sheds light on the progress made thus far, on the challenges to be faced in the event of attacks, and on the necessity of developing a comprehensive pan-European approach to testing, certification, and normalisation in order to promote security, resilience, and trust.