time.lex study on European identity management for ENISA published

Author info
Hans Graux

time.lex recently assisted the European Network and Information Security Agency (ENISA) in drafting a paper on European electronic identity management initiatives. This paper has now been released to the public.

In this report, time.lex examined a series of key initiatives that have been taken at the European level to improve the interoperability between national electronic identity management (eIDM) approaches. Given time.lex' strong involvement in these initiatives in recent years, the paper provides an in-depth overview of their goals, realisations and interconnections.

As noted in ENISA's press release, "The ENISA report is a milestone, as it is the Agency's first experts' snapshot of Europe's state of play in eIDM. The study charts the origins and scope of European eID interoperability. It focuses specifically at the triangle of three intrinsically connected drivers:

1. At the policy level; an examination of the eID Roadmap, and the eID -2010 goals to be reached by 2010.
2. The recently initiated 20 Mn € STORK Project is analysed, as one of several EU projects focusing on eID. This initiative develops a series of pilot projects for citizens of 13 EU Member States, using their governments' eID/authentication systems. Thus, the STORK project pilots a basic infrastructure in the EU for cross-border eID systems. But, the report strongly underlines that although STORK is significant, it is not to be seen as the panacea for all eID interoperability problems. Many European eIDM projects overlap but the solution does not lie in any single project. Instead the outcomes of all eID building blocks must eventually be put together to create a coherent and pragmatic infrastructure for European eID interoperability.
3. Third, the report examines the implementation of the Services Directive. The Directive requires Member States to put electronic points of single contact in place by 28 Dec. 2009. By then, service providers from any Member State should be able to complete formalities, to offer their services and to identify themselves electronically in a reliable way.

The report identified the four main policy priorities for European eIDM:

1. In 2009, the policy objectives of the eID Roadmap will need to be reviewed and updated.
2. To examine the results of the STORK project and how the pilot infrastructure can be expanded into a full-scale system.
3. Once an interoperability infrastructure is in place, Member States will need to decide on the security requirements of their applications which do not discriminate against foreign citizens and enterprises.
4. A greater emphasis on the citizen-centric approach to eID. It is crucial to give users sufficient personal control over their identity.

Mr. Andrea Pirotti, Executive Director of ENISA comments:

"This report shows that the pioneer eID systems soon must move into interoperable systems. This is a crucial time for EU Member States to make the right decisions, not only to guarantee interoperability, but also security and usability."

ENISA's press release on the study can be found here, and the full study is available for download via the press release.