As the launch of the European Digital Identity Wallet (EDIW) is two years away, many businesses and individuals are exploring interim digital identity solutions until the wallet can be used by everyone. Many of these temporary solutions might even be usable under eIDAS 2.0. Here are some key alternatives for the present, their use cases, and the main differences compared to the EDIW.
National digital identity systems
-
Differences: Unlike EDIWs, which are designed for cross-border use within the EU, national systems are typically limited to use within a single country. They may not offer the same level of interoperability or privacy controls as EDIWs. For example, BankID in Sweden and Norway is used for secure login to bank services, e-commerce, government portals, and healthcare, though it relies on banking infrastructure and lacks cross-border functionality. Estonia’s Mobile ID, which provides access to government services, document signing, and secure transactions, is closely tied to the national ID system and generally restricted to Estonia. In Denmark, NemID and its successor MitID are used for online banking, government services, and digital signatures, offering strong local adoption but lacking cross-border capabilities. Ireland’s MyGovID facilitates access to government services, social welfare, and tax systems but is specific to Ireland and not as interoperable across the EU. FranceConnect enables single sign-on for public and private sector services within France but does not offer the comprehensive, cross-border functionality of EDIWs. Finally, eIDAS-compliant national eIDs support access to cross-border services and government interactions but do not provide the unified, user-controlled data management and extensive use cases of EDIWs, often being limited in scope and functionality.
Bank identification
-
Differences: In Germany, an additional reference transfer is used to confirm the users' identities, building on the fact that they were initially identified when opening the respective bank accounts. This method complies with German AML law and PSD2 by meeting strict privacy and security standards, seamlessly integrating into the financial ecosystem across Europe, and ensuring high trustworthiness. In other countries, eIDAS identification or signature can be used as an AML-conforming identification means. In Switzerland, a qualified electronic signature must be placed on a copy of an official ID document.
Face-to-face identification
-
Differences: Available in many countries (e.g., German post offices and Swisscom Shops in Switzerland). This traditional method might meet eIDAS 2.0 requirements for trusted document authentication and provides a secure option for those who prefer physical verification. However, it is restricted to opening hours and may not be practical for rural areas.
Video identification
-
Use cases: Remote verification of ID documents via encrpyted video call.
-
Differences: Customers present an ID document to a call center agent during onboarding. The agent examines the document and may ask security questions to ensure authenticity. This method allows customers to perform verification from home but is restricted by the call center's operation hours and the cost of human labor involved.
Auto-ident
-
Use cases: Automated identity-proofing using smartphone cameras.
-
Differences: Users take a video of their ID document and themselves, with AI pre-verifying the identity and checking the ID document. Human agents review the pre-analyzed results. This method offers flexible identification hours (24/7) and reduces costs but relies on AI accuracy and human oversight.
NFC-ident
-
Use cases: Operatorless identity verification using NFC chips in passports or ID cards.
-
Differences: The process is automated by reading NFC chips compliant with ICAO 9303, eliminating the need for manual data entry from ID documents. This reduces staff costs and is not restricted by opening or working hours.
Electronic ID schemes
-
Use cases: Access to government services, healthcare, and banking using electronic identification.
-
Differences: Prior to the eID wallet, many European countries offered electronic ID schemes issued to natural or legal persons by public organizations, private companies, and public-private joint ventures. These schemes use chip-based means integrated within SIM cards or ID documents, or app-based means simulating smart card functionality. The Level of Assurance (LoA) provides confidence in the person's identity, with eIDAS 2.0 defining "high" as the standard, whereas eIDAS 1.0 defined "substantial" as sufficient.
When choosing a digital identity solution, businesses and individuals should consider their specific needs, the required level of security, and the geographical scope of their operations. The EDIW represents a significant advancement in digital identity management within the EU, but understanding alternative methods is crucial for making informed decisions. The situation is complex, with various ID methods available and different user preferences. Swisscom Trust Services provides a comprehensive solution, offering a wide range of identification options by market leaders to meet diverse customer needs, thereby enhancing security and increasing conversion rates.
What will change under eIDAS 2.0?
Article 24 of the revised eIDAS regulation has been adopted to ensure that alongside eWallet identification, eID identification must meet a higher standard. All other identification methods mentioned will undergo a stricter conformity assessment to demonstrate a "high level of confidence," a new term introduced in the regulation. The specific details will be outlined in the upcoming implementing acts expected by mid of 2025, supported by an updated ETSI EN TS 119 461 standard.
.svg)
.svg)
