GSB 7.0 Standardlösung

The eIDAS Regulation and its significance for the eID function

Regulation (EU) No 910/2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC (eIDAS Regulation) entered into force on 17 September 2014.

The eIDAS Regulation includes provisions on electronic identification and electronic trust services which are binding for all EU member states. The regulation creates a standard framework for the cross-border use of electronic means of identification, and thus the eID function, and trust services.

The text of the regulation and its various implementing acts for the area of electronic identification are available here.

Scope of the regulation

As an EU regulation, the eIDAS Regulation is directly applicable law in all 28 EU member states and in the European Economic Area.

The regulation applies to all public administration.

The implementation in the area of electronic identification is to be completed by 29 September 2018.

The time line for implementing the eIDAS Regulation The time line for implementing the eIDAS Regulation The time line for implementing the eIDAS Regulation Source: Federal Ministry of the Interior

According to the regulation, cross-border identification is to be based on the reciprocal recognition of electronic means of identification of the member states.

In a first step, the member states can voluntarily notify the European Commission of their electronic means of identification.

All notified electronic means of identification must then be recognized by all other member states.

German online ID function has highest possible assurance level

In accordance with Article 9 of the eIDAS Regulation, the Federal Republic of Germany started the process of notifying the electronic identification function of the German national ID card and electronic residence permit on 20 February 2017 by sending the necessary documents to the European Commission. Meanwhile, it is the first EU member state to have completed the notification process.

The notification was published in the Official Journal of the European Commission on 26 September 2017, following a review by technical experts of almost all member states, who attributed the highest assurance level pursuant to the eIDAS Regulation, which is “high”.

“This confirms the high quality of the eID function”, the Federal Interior Minister, Dr Thomas de Maizière, pointed out. “The eID function allows individuals and enterprises to verify their identity in a secure and easy manner. More and more smartphones are eID compliant. Furthermore, we took major steps this summer to facilitate the eID integration in e-business and e-government services, creating positive conditions for enterprises and the administration to provide more fields in which to use the eID function.”

The notification means that all EU member states will have to open their own administrative proceedings for the German online ID function as of 29 September 2018, if and when they need an electronic identification at a “substantial” or “high” assurance level.

In the medium and long term, German citizens may use the eID function to enrol at universities, register their business, file their tax returns or apply for vehicle registration in other EU member states, among other things.

The publication of the notification in the EU’s Official Journal is available here.

More information on preparing the German eID function for EU-wide use is available here.

Information on integrating the eID solutions of EU member states in the German eID infrastructure is available here.

Information on the implementation and action required by the eIDAS Regulation is available here.

The Federal Office for Information Security (BSI) has published the technical notification documents here.