Public resources shared within the WE BUILD WP4 Trust Infrastructure group
The Trust Registry Infrastructure group is dedicated to establishing the framework for trust evaluation and management within digital Wallet ecosystems, in compliance but not limited to the model defined by European regulation (910/2014 as amended by Regulation (EU) 2024/1183).
The group develops an implementation of the trust model based on a trusted third party (Trusted Lists) resulting in a Trust Framework and an demo infrastructure of trust.
The group aims to create a comprehensive infrastructure of trust that supports seamless interactions among diverse entities.
We welcome contributions from all collaborators.
- Open issues for bugs, improvements, or questions
- Submit pull requests following the repository structure
- Use discussions (if enabled) for ideas and proposals
By contributing, you agree to follow the project's coding and documentation guidelines.
Co-funded by the European Union
The project is co-funded by the European Union. However, the views and opinions expressed are those of the author(s) only and do not necessarily reflect those of the European Union or the granting authority. Neither the European Union nor the granting authority can be held responsible.
Licensed to the WE BUILD Consortium under the consortium agreements. The WE BUILD Consortium licenses this file to you under the Apache License, Version 2.0 (the "License"); you may not use these files except in compliance with the License.
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
gantt
title WP4 Trust Group Project Schedule
dateFormat YYYY-MM-DD
section Task 1
Definition of the Use cases :active, task1, 2025-09-25, 2026-01-31
section Task 2
Definition of the Trust Framework :active, task2, 2025-10-25, 2026-06-25
section Task 3
X.509 PKI with ETSI alignments :task3, 2025-11-25, 2026-04-25
section Task 4
Trust Infrastructure API and features :active, task4, 2025-10-25, 2026-09-25
Trust list and deploy (4.1) :active, task4_1, 2025-10-25, 2026-03-25
RFC (4.2) :task4_2, 2026-01-25, 2026-04-25
Onboarding API (4.3) :task4_3, 2026-06-25, 2026-09-25
section Task 5
Participants' Certificates and Policies :task5, 2026-01-01, 2026-07-30
Data model (5.1) :task5_1, 2026-01-01, 2026-03-31
Trust evaluation methods (5.2) :task5_2, 2026-03-01, 2026-07-30
section Task 6
Wallet Instance Conformance/Interop :task6, 2026-02-01, 2026-10-30
section Task 7
Testing and Validation :task7, 2026-06-01, 2026-12-31
wp4-trust-group/
│
├── references/ # Standards, Drafts, Documentation
│ ├── standards/ # Official standards and specifications
│ ├── drafts/ # Draft specifications and working documents
│ ├── reference-specifications/ # Reference implementations and profiles
│ └── overview.md # Overview of all references
│
├── task1-use-cases/ # Use cases
│ ├── subtask1-1-onboarding/ # Use cases onboarding
│ └── subtask1-2-trust-registry/ # Use cases trust registry
│
├── task2-trust-framework/ # Trust Framework
│
├── task3-x509-pki-etsi/ # X.509 PKI with ETSI alignments
│
├── task4-trust-infrastructure-api/ # Trust Infrastructure API and additional features
│ ├── trust-infrastructure-api/ # Trust Infrastructure API
│ └── onboarding-api/ # Onboarding API
│
├── task5-participants-certificates-policies/ # Participants' Certificates and Policies
│ ├── data-model/ # Data model
│ └── trust-evaluation-methods/ # Trust evaluation methods
│
├── task6-Wallet-conformance-interop/ # Wallet Instance Conformance/Interop Checks
│
├── task7-testing-validation/ # Testing and Validation
│
├── docs/ # Documentation
│ ├── architecture/ # Architecture documentation
│ ├── api/ # API documentation
│ ├── standards/ # Standards compliance documentation
│ └── testing/ # Testing documentation
│
├── examples/ # Examples and use cases
│ ├── trust-framework/ # Trust framework examples
│ ├── api-usage/ # API usage examples
│ └── testing/ # Testing examples
│
├── tools/ # Development and validation tools
│ ├── validation/ # Validation tools
│ ├── testing/ # Testing tools
│ └── deployment/ # Deployment tools
│
├── .github/ # CI/CD workflows and templates
│ ├── workflows/ # GitHub Actions workflows
│ ├── ISSUE_TEMPLATE/ # Issue templates
│ └── PULL_REQUEST_TEMPLATE/ # Pull request templates
│
├── README.md # This file
└── LICENSE # License file
- eIDAS Regulation (EU) No 910/2014 - Regulation on electronic identification and trust services
- Regulation (EU) 2024/1183 - Amending Regulation (EU) No 910/2014
- CIR 2025/848 - Commission Implementing Regulation on the registration of wallet-relying parties
- ETSI TS 119 612 (v2.4.1) - Electronic Signatures and Trust Infrastructures (ESI); Trusted Lists
- ETSI TS 119 602 (v01.01.01) - Electronic Signatures and Trust Infrastructures (ESI); Trusted lists; Data model. Trusted lists in other formats, such as JSON, CBOR or ASN.1.
- ETSI TS 119 411-8 (v01.01.01) - Access Certificate Policy for EUDI Wallet Relying Parties
- ETSI TS 119 475 (v01.01.01) - Relying party attributes supporting EUDI Wallet User's authorisation decisions (Relying Party Attributes)
- ETSI TS 119 412-6 (v1.1.1) - Electronic Signatures and Trust Infrastructures (ESI); Certificate Profiles; Part 6: Certificate profile requirements for PID, Wallet, EAA, QEAA, and PSBEAA providers
- ETSI TS 119 472-2 (v1.1.1) - Electronic Signatures and Trust Infrastructures (ESI); Profiles for Electronic Attestation of Attributes; Part 2: Profiles for EAA/PID Presentations to Relying Party
These below may have further updates and require to considered in future milestones.
- EC TS02 v0.9 (2025-04) - Specification of systems enabling the notification and subsequent publication of Provider information
- EC TS05 V1.0 (2025-06) - Common Formats and API for Relying Party Registration Information (upcoming ETSI TS)
- EC TS06 v1.0 (2025-06) - Common set of Relying Party information to be registered
- ENISA EUCC Guidelines Cryptography v.2 (2025-05) - European Union Common Criteria-based Cryptography Guidelines
- Reference: CIR (EU) 2024/2981, CIR (EU) 2024/482
- IETF RFC 5914 - Trust Anchor Format
- IETF RFC 5280 - Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile
- W3C XML Digital Signature - XML Signature Syntax and Processing Version 1.1
- W3C XML Schema - XML Schema Definition Language
- ETSI TS 119 472-3 (v0.0.11 Draft) - Electronic Signatures and Trust Infrastructures (ESI); Profiles for Electronic Attestation of Attributes; Part 3: Profiles for issuance of EAA or PID
- OpenID Federation 1.0 - Draft 43
- OpenID Federation Wallet Architectures 1.0 - Draft 03
- Clone the repository
- Review the task directories for specific implementation details
- Check the references directory for relevant standards and specifications
- Follow the contributing guidelines for any modifications
For questions and discussions, please use the GitHub Issues or Discussions section of this repository.