Six months after the new rules for trust services came into force under the eIDAS regulation, an eIDAS Trust Services Workshop was held in Brussels, on 19 December 2016, to present the state of play.
On 1st July 2016, Chapter III of Regulation (EU) 910/2014, which lays down the rules on Trust Services, i.e. electronic signatures, electronic seals, electronic time stamps, electronic registered delivery services and website authentication, was applied directly in all 28 Member States. This represents a big step forward in building a Digital Single Market and will result in important changes both for public administrations and the providers of these services.
From the 1999 Directive on electronic signatures, we now have a directly applicable legal text going beyond electronic signatures and including a set of trust services which are important for secure and
convenient electronic transactions across the EU. This means new rules for public administrations but also for the providers of electronic trust services, which can be either qualified or non-qualified.
Trust service providers can decide whether to become qualified. If they do, there is an initiation process involving different actors, as a result of which qualified trust service providers and the qualified trust services provided by them are included in the Trusted Lists – which now have a constitutive effect (unlike before 1st July, when they were only an information tool).
The workshop was organised for Member States, Supervisory Bodies, Conformity Assessment Bodies, National Accreditation Bodies, Certification Bodies (under Art. 30 of eIDAS Regulation), Trust Service Providers, ENISA and Standardisation Bodies - ETSI (CEN) representatives. It focused on sharing experiences, best practices and success stories through presentations and real use cases, as well as sessions to discuss real challenges and address concrete questions related to the eIDAS requirements.
eIDAS Trust Services - 6 months on