The Italian EUDI Wallet implementation profile¶
Introduction¶
The European Parliament has adopted the revision of the eIDAS Regulation concerning electronic identification and trust services, introducing a significant innovation: the European Digital Identity Wallet. This update marks a pivotal advancement in the EU's digital strategy, aiming to enhance the security, interoperability, and usability of digital identities across Member States. For further details, resources, and notes on this legislative development, please refer to the official EU Commission and Parliament websites.
Italy has launched the National digital identity Wallet solution, known as IT-Wallet, established by the Legislative Decree of March 2, 2024, No. 19 (commonly referred to as the PNRR Decree)., in direct response to the European community's directives. This initiative ensures full interoperability with the digital identity solutions provided by other European Member States, aligning with European regulations.
The purpose of the following technical rules is to define the technical architecture and reference framework to be used as a guideline by all the parties involved in the development of the IT-Wallet project.
This documentation defines the national implementation profile of IT-Wallet, containing the technical details about components of the Wallet ecosystem, as listed below:
Entities of the ecosystem according to EIDAS-ARF.
Infrastructure of trust attesting realiability and eligibility of the participants.
PID and EAAs data schemes and attribute sets.
PID/EAA in MDL CBOR format.
PID/EAA in SD-JWT format.
Wallet Solution general architecture.
Wallet Attestation.
Issuance of PID/EAA according to OpenID4VCI.
Presentation of PID/EAA according to OpenID4VP.
Presentation of pseudonyms according to SIOPv2.
PID/EAA backup and restore mechanisms.
PID/EAA revocation lists.
Index of content¶
- The Digital Identity Wallet Paradigm
- Normative Language and Conventions
- Defined Terms
- The Infrastructure of Trust
- Federation Roles
- General Properties
- Trust Infrastructure Functional Requirements
- Federation API endpoints
- Configuration of the Federation
- Entity Configuration
- Metadata of federation_entity Leaves
- Subordinate Statements
- Trust Evaluation Mechanism
- Trust Chain Fast Renewal
- Non-repudiability of the Long Lived Attestations
- Privacy Remarks
- Considerations about Decentralization
- Wallet Solution
- Wallet Attestation
- PID/(Q)EAA Data Model
- PID/(Q)EAA Issuance
- Entity Configuration of PID/(Q)EAA Providers
- Authentic Sources
- Relying Party Solution
- Entity Configuration of Relying Parties
- Credential Lifecycle
- Pseudonyms
- backup-restore.rst
- Cryptographic Algorithms
- Security and Privacy Considerations
- How to contribute
- Technical References