iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CEN

FprCEN/TS 18098

(Main)

Guidelines for the onboarding of user personal identification data within European Digital Identity Wallets

Guidelines for the onboarding of user personal identification data within European Digital Identity Wallets

This document defines and describes the concept of on-boarding of person identification data (PID) within a Wallet. The scope of this document includes cases where a natural person is the User in control of a Wallet. This includes a natural person who is in control of their own information, as well as natural persons who control information to represent another natural person or a legal person. This document considers a single set of PID attributes linked to a single Wallet Unit. This does not exclude the issuance of multiple PIDs representing the same set of PID attributes, e.g. batch issuance.
It also provides the general workflow, the roles and responsibilities at stake, and links the on-boarding with the Level of Assurance concept underpinning eIDAS [1];
The scope of this document includes cases where a natural person is the User in control of a wallet. This includes a natural person who is in control of their own data as well as natural persons who control data to represent another natural person or legal person.
EXAMPLE   If a natural person represents a legal person, the PID provider can issue a "representation PID" in an own Wallet Unit for representation purposes controlled by the natural person Wallet User. The "representation PID" is a kind of attestation which contains PID about the natural person (representative) and about the legal person (representee).
This document is limited to the on-boarding of an unique set of person identification data, complying with the legal provisions of eIDAS [1], in particular (1) issued in accordance with Union or National laws, and (2) conformant with the relevant implementing act [5].
The following aspects are out of scope of this document:
-   the on-boarding of person identification data within a Wallet where the User is a legal person;
-   other types of on-boarding, such as:
-   provisioning of person identification data after revocation, expiration or deletion;
-   addition of other Attributes (under the shape of attestations) in accordance with the requirement of Level of Assurance “High” which are not part of the set of person identification data but are part of the legal identity under National’s laws;
-   management of person identification data (deletion, update, etc.);
-   provisioning of person identification data which is not compliant with the relevant implementing act [5];
-   provisioning of a partial set of person identification data;
-   provisioning of supplemental set(s) of person identification data (multiple PIDs);

Leitlinien für das Onboarding von persönlichen Identifikationsdaten der Nutzer in europäischen digitalen Identity Wallets

Dieses Dokument definiert und beschreibt das Konzept des Onboardings von Personenidentifizierungs-daten (PID) in einer Wallet. Der Anwendungsbereich dieses Dokuments umfasst Fälle, in denen eine natürliche Person der Nutzer ist, der die Kontrolle über eine Wallet ausübt. Dies umfasst eine natürliche Person, die die Kontrolle über ihre eigenen Angaben hat, sowie natürliche Personen, die Angaben kontrollieren, um eine andere natürliche Person oder eine juristische Person zu vertreten. Dieses Dokument befasst sich mit einem einzelnen Satz von PID Attributen, der mit einer Einzel-Wallet für einen einzelnen Nutzer verknüpft ist. Dies schließt die Ausstellung mehrerer PID, die denselben Satz von PID Attributen darstellen, nicht aus, z. B. die Stapelausgabe.
Es enthält außerdem den allgemeinen Arbeitsablauf, die betreffenden Rollen und Verantwortlichkeiten und verknüpft das Onboarding mit dem Konzept der Sicherheitsniveaus, das eIDAS [1] zugrunde liegt.
Der Anwendungsbereich dieses Dokuments umfasst Fälle, in denen eine natürliche Person der Nutzer ist, der die Kontrolle über eine Wallet ausübt. Dies umfasst natürliche Personen, die die Kontrolle über ihre eigenen Daten haben, sowie natürliche Personen, die Daten kontrollieren, um eine andere natürliche Person oder juristische Person zu vertreten.
BEISPIEL   Vertritt eine natürliche Person eine juristische Person, kann der PID Anbieter „Vertretungs-PID“ in einer eigenen Einzel-Wallet zu Vertretungszwecken ausstellen, die vom Wallet-Nutzer der natürlichen Person kontrolliert werden. Die „Vertretungs-PID“ sind eine Art Bescheinigung, die die PID der natürlichen Person (Vertreter) und der juristischen Person (Vertretener) enthält.
Dieses Dokument beschränkt sich auf das Onboarding eines eindeutigen Satzes von Personenidentifizierungsdaten, der den gesetzlichen Bestimmungen der eIDAS-Verordnung [1] entspricht, insbesondere (1) in Übereinstimmung mit Unionsrecht oder nationalem Recht ausgestellt ist und (2) mit dem einschlägigen Durchführungsrechtsakt [5] konform ist.
Die folgenden Aspekte fallen nicht in den Anwendungsbereich dieses Dokuments:
   das Onboarding von Personenidentifizierungsdaten in einer Wallet, bei der der Nutzer eine juristische Person ist;
   andere Arten des Onboardings, z. B.:
   Bereitstellung von Personenidentifizierungsdaten nach Widerruf, Ablauf oder Löschung;
   Hinzufügung weiterer Attribute (in Form von Bescheinigungen) in Einklang mit den Anforderungen des Sicherheitsniveaus „hoch“, die nicht Teil des Satzes von Personenidentifizierungsdaten sind, aber nach nationalem Recht Teil der rechtlichen Identität;
   Management von Personenidentifizierungsdaten (Löschung, Aktualisierung usw.);
   Bereitstellung von Personenidentifizierungsdaten, die nicht konform mit dem einschlägigen Durchführungsrechtsakt [5] sind;
   Bereitstellung eines Teilsatzes von Personenidentifizierungsdaten;
   Bereitstellung zusätzlicher Sätze von Personenidentifizierungsdaten (mehrere PID).

Lignes directrices pour l'intégration des données d'identification personnelle des utilisateurs dans les portefeuilles d'identité numérique européens

Smernice za vnašanje osebnih identifikacijskih podatkov uporabnikov v evropske denarnice za digitalno identiteto

General Information

Status
Not Published
Publication Date
03-Dec-2025
Technical Committee
CEN/TC 224 - Machine-readable cards, related device interfaces and operations
Drafting Committee
CEN/TC 224/WG 20 - Ad Hoc Group on European Digital Identity Wallets
Current Stage
5020 - Submission to Vote - Formal Approval
Start Date
17-Jul-2025
Due Date
31-Mar-2024
Completion Date
17-Jul-2025
Directive
910/2014 - Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing directive 1999/93/EC
Ref Project
kSIST-TS FprCEN/TS 18098:2025 - Guidelines for the onboarding of user personal identification data within European Digital Identity Wallets

Buy Standard

kTS FprCEN/TS 18098:2025 - BARVEkTS FprCEN/TS 18098:2025 - BARVE
PreviousNext
Draft
kTS FprCEN/TS 18098:2025 - BARVE
English language
167 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-september-2025
Smernice za vnašanje osebnih identifikacijskih podatkov uporabnikov v evropske
denarnice za digitalno identiteto
Guidelines for the onboarding of user personal identification data within European Digital
Identity Wallets
Leitlinien für das Onboarding von persönlichen Identifikationsdaten der Nutzer in
europäischen digitalen Identity Wallets
Lignes directrices pour l'intégration des données d'identification personnelle des
utilisateurs dans les portefeuilles d'identité numérique européens
Ta slovenski standard je istoveten z: FprCEN/TS 18098
ICS:
35.240.15 Identifikacijske kartice. Čipne Identification cards. Chip
kartice. Biometrija cards. Biometrics
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

FINAL DRAFT
TECHNICAL SPECIFICATION
SPÉCIFICATION TECHNIQUE
TECHNISCHE SPEZIFIKATION
July 2025
ICS
English Version
Guidelines for the onboarding of user personal
identification data within European Digital Identity
Wallets
Lignes directrices pour l'intégration des données Leitlinien für das Onboarding von persönlichen
d'identification personnelle des utilisateurs dans les Identifikationsdaten der Nutzer in europäischen
portefeuilles d'identité numérique européens digitalen Identity Wallets

This draft Technical Specification is submitted to CEN members for Vote. It has been drawn up by the Technical Committee
CEN/TC 224.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway,
Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Türkiye and
United Kingdom.
Recipients of this draft are invited to submit, with their comments, notification of any relevant patent rights of which they are
aware and to provide supporting documentation.

Warning : This document is not a Technical Specification. It is distributed for review and comments. It is subject to change
without notice and shall not be referred to as a Technical Specification.

EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2025 CEN All rights of exploitation in any form and by any means reserved Ref. No. FprCEN/TS 18098:2025 E
worldwide for CEN national Members.

Contents Page
European foreword . 6
Introduction . 7
1 Scope . 9
2 Normative references . 9
3 Terms and definitions . 10
4 Abbreviated terms . 21
5 Conformance claim . 23
6 Data storage location & on-boarding . 23
6.1 Architecture of the Wallet . 24
6.2 Storage of PID(s) and Electronic Attestation(s) of Attribute . 25
6.3 Storage of cryptographic keys . 25
7 Guidelines for on-boarding workflow . 26
7.1 General . 26
7.2 On-boarding . 26
7.2.1 Overview . 26
7.2.2 User vs Subject . 29
7.2.3 Wallet installation and activation . 29
7.2.4 Identity proofing & Wallet Unit credentials binding . 36
7.2.5 PID issuance . 38
7.3 Possible on-boarding workflows . 40
7.3.1 Regular workflow . 40
7.3.2 Alternative workflow . 40
7.4 Mapping of on-boarding with ISO/IEC 23220 series . 41
7.4.1 Mapping with ISO/IEC 23220-1:2023[14] . 41
7.4.2 Mapping with ISO/IEC TS WD7 23220-5:2025[21] . 43
7.5 Data to be provisioned during on-boarding . 44
7.5.1 Overview . 44
7.5.2 Wallet Unit Validity Attestation . 44
7.5.3 Wallet Unit Trust Attestation . 45
7.5.4 Cryptographic keys . 46
7.5.5 Other Wallet data . 52
7.5.6 PID . 53
7.5.7 PID metadata . 55
7.5.8 Impact of delegation of representation . 56
7.6 Considerations regarding the Wallet Provider . 58
7.6.1 Responsibilities of the Wallet Provider . 58
7.6.2 Wallet Provider vs supplier and subcontractor . 58
7.6.3 Privacy and data protection aspects . 58
7.7 Cryptographic binding of credentials to a Wallet Unit . 59
7.7.1 Overview . 59
7.7.2 Process to cryptographically bind a credential to the Wallet Unit . 59
7.7.3 Proof of Association (PoA) . 59
7.7.4 Proof of Possession (PoP) . 60
8 Requirements to meet the Level of Assurance 'High" . 61
8.1 General . 61
8.2 Wallet installation and activation . 62
8.2.1 User eligibility checks and User Account creation . 62
8.2.2 Client application loading and installation . 62
8.2.3 Binding between the User, the User's device and the Wallet Unit . 62
8.2.4 Configuration of the Wallet Unit . 65
8.2.5 Initialisation of the Wallet Unit . 66
8.2.6 Finalisation . 67
8.3 Identity proofing & Wallet Unit credentials binding . 67
8.3.1 Requirements applicable to the whole process . 67
8.3.2 Identification of the Subject . 67
8.3.3 Identity verification of the User . 68
8.3.4 Identification and authentication of the Wallet Unit . 80
8.3.5 Verification of binding between the identified User and the Wallet Unit . 80
8.3.6 Verification of the relationship between the identified User and the Subject . 80
8.3.7 Collection of information needed to issue credentials . 80
8.4 PID issuance . 82
8.4.1 Requirements applicable to the whole process . 82
8.4.2 Eligibility checks of the Wallet and issuance of PID . 82
8.4.3 Identification and authentication of the Wallet Unit . 82
8.4.4 Provisioning of credentials . 82
8.4.5 Finalisation of PID issuance . 83
8.5 Case of alternative workflows for on-boarding . 83
8.5.1 C-REQ . 83
8.6 Requirements common to all processes . 83
8.6.1 REQ . 83
8.6.2 C-REQ . 84
8.6.3 C-REQ . 84
8.6.4 REQ . 84
8.7 Requirements regarding the Wallet Unit . 85
8.7.1 REQ . 85
8.7.2 REQ . 85
8.7.3 REQ . 85
8.7.4 REQ . 85
8.7.5 RECO . 86
8.7.6 C-REQ . 86
8.7.7 REQ .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CEN
EN ISO 8536-16:2025(Main)
Infusion equipment for medical use - Part 16: Infusion sets for single use with volumetric infusion controllers (ISO 8536-16:2025)
kSIST FprEN ISO 8536-16:2025

This document specifies the requirements for sterilized, single-use, gravity feed infusion sets, used together with the volumetric infusion controllers of IEC 60601-2-24.

  • Draft
    17 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 10286:2025(Main)
Gas cylinders - Vocabulary (ISO 10286:2025)
kSIST FprEN ISO 10286:2025

This document defines terms for the manufacture and use of gas cylinders and other pressure receptacles and their fittings.

  • Draft
    68 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 75-3:2025(Main)
Plastics - Determination of temperature of deflection under load - Part 3: High-strength thermosetting laminates and long-fibre-reinforced plastics (ISO 75-3:2025)
kSIST FprEN ISO 75-3:2025

This document specifies a method used for the determination of the temperature of deflection under load of specified plastics (including fibre-reinforced plastics in which the fibre length is, prior to processing, greater than 7,5 mm) under defined conditions. A number of different test conditions are defined, depending on the anticipated specimen dimensions.
For additional information, see ISO 75-1:2020, Clause 1.

  • Draft
    16 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 13501-3:2025(Main)
Fire classification of construction products and building elements - Part 3: Classification using data from fire resistance tests on products and elements used in building service installations: fire resisting ventilation ducts and fire dampers and/or power, control and communication cables
kSIST FprEN 13501-3:2025

This document specifies the procedure for classification of the resistance to fire performance of construction products and building elements used as components of building service installations, using data from fire resistance tests which are within the direct field of application of the relevant test method. Classification on the basis of extended application of test results is also included in the scope of this document.
Construction products or building elements for use in ventilation systems include (excluding smoke control system):
—   fire resisting ventilation ducts;
—   fire dampers.
Construction products or building elements for use in or as cables systems:
—   unprotected electric cables with intrinsic fire resistance;
—   fire protective systems for cable systems and associated components.
Relevant test methods which have been prepared for these construction products/building elements are listed in Clause 2.
NOTE   Cables associated with fire dampers are not generally covered by this document unless there is a local regulation that requires it.

  • Draft
    28 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17098-1:2025(Main)
Plastics - Barrier films for agricultural and horticultural soil disinfection by fumigation - Part 1: Specifications for barrier films
kSIST FprEN 17098-1:2025

This document specifies the requirements relating to the dimensional, mechanical and physical-chemical characteristics of thermoplastic barrier films designed for agricultural and horticultural soil disinfection by means of fumigation.
This document specifies also the test methods for verifying these requirements, except the method for determining film permeability using a static technique, which is specified in EN 17098 2.
This document defines the criteria for design for recycling of barrier films and refer to EN 18109 for the product lifecycle, including installation, use, removal and collection for end of life for management of the product after its usage.
This document is applicable to films used during soil disinfection by fumigation (class 1), and to films used during soil disinfection subsequently kept in situ as mulch films (class 2).
On the date of publication of this document, the barrier films are multi-layer films.

  • Draft
    30 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 6877:2025(Main)
Dentistry - Endodontic obturating materials (ISO 6877:2025)
kSIST FprEN ISO 6877:2025

This document specifies the requirements for the dimensions of various endodontic obturating materials and the radiopacity for polymeric points, polymeric-coated thermoplastic obturating carriers, non-point-shaped thermoplastic obturating material, or combinations of the above used for obturation of a root canal system. It also specifies numerical and colour-coding systems for designating the sizes of preformed endodontic obturating points, a method for determining the melt mass-flow rate for injection material, and the requirements for marking, labelling, packaging and the instructions for use.
Dental endodontic obturating points are marketed as sterilized or non-sterilized. Sterility is not included in this document. Any claim that the product is sterile is the manufacturer's responsibility (see Table 3). This document does not apply to instruments or apparatus used with obturating materials that become plastic with heat or materials supporting a coronal restoration.
Clause 7 specifies marking, labelling and packaging, including the instructions for use. This document does not specify requirements or test methods for sterility. Reference to applicable national regulations, internationally accepted pharmacopoeia and standards for validating sterilization processes can apply.

  • Draft
    25 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 18618:2025(Main)
Dentistry - Interoperability of CAD/CAM systems (ISO 18618:2025)
kSIST FprEN ISO 18618:2025

This document specifies an extensible markup language (XML) format to facilitate the transfer of dental case data and CAD/CAM data between software systems.

  • Draft
    76 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 18088:2025(Main)
Flexible sheets for waterproofing - Plastics recycling and recycled plastics - Plastic waterproofing sheets
kSIST FprEN 18088:2025

Plastic waterproofing sheets generate plastic waste at different stages during their life cycle: production, construction process, service life and end-of-life.
This document specifies the source of recyclate made from pre-consumer material and post-consumer material as it is used in new products. These new products can be plastic waterproofing sheets, other sheets, other construction products or other products.
It defines terms and definitions.
It gives guidance for assessing the recyclates intended for use in the production of new products.
This document is applicable for similar products as construction sheets or membranes consisting of polymers or plastic components such as: swimming pool membranes, geosynthetic membranes, garden ponds membranes, protection membranes, accessories based on thermoplastic material such as walkways, prefabricated pieces. The listing is not exhaustive.
NOTE   The design for recycling of packaging, including the recycling itself, is defined in the CEN/TC 261 “Packaging”.

  • Draft
    19 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 14331:2025(Main)
Liquid petroleum products - Separation and characterisation of fatty acid methyl esters (FAME) from middle distillate fuels - Liquid chromatography (LC)/gas chromatography (GC) method
SIST EN 14331:2025

This document specifies a method for the separation of fatty acid methyl esters (FAME) from middle distillates by liquid chromatography (LC) and for the determination of the pattern of the fatty acid methyl esters by gas chromatography (GC) according to EN 14103.
This document is applicable for the determination of the pattern of the fatty acid methyl esters for the calculation of the average molecular mass of FAME according to EN 14078 [1].
Independently from the origin of the middle distillate, this method is applicable to FAME of vegetable or animal origin that contain fatty acid methyl esters between C6:0 and C24:1. The method is suitable for the separation and determination of FAME from middle distillates with FAME contents of at least 2 % (V/V).
NOTE   For the purpose of this document, the terms % (V/V) and % (m/m) are used to express volume fractions in % or mass fractions in %.

  • Draft
    9 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 377:2017/A1:2025(Amendment)
Steel and steel products - Location and preparation of samples and test pieces for mechanical testing - Amendment 1 (ISO 377:2017/Amd 1:2025)
SIST EN ISO 377:2017/kFprA1:2025
  • Draft
    5 pages
    English language
    sale 10% off
    e-Library read for
    1 day