digeorgi
commented
1 month ago Thank you very much for your comment. Please note that the ARF by definition applies only to the EUDI Wallet ecosystem. There is no requirement in the Regulation mandating the EUDI Wallet must be interoperable with Relying Parties outside this ecosystem. Therefore, there is no need to define anything in the ARF regarding this topic.
That being said, a Wallet Instance will be able to communicate with any immigration authority in the world, provided this authority complies with the requirements of the EUDI Wallet ecosystem. Especially the fact that the Regulation requires successful Relying Party authentication is important in this context, However, the challenge of allowing a Wallet Instance to interact with non-EU Relying Parties is more political than technical. There are no technical barriers preventing the EU from accepting a third-party Trusted List as a source of trust anchors for Relying Party authentication. Also for that reason, there is no need to change the ARF, which is a technical document.
Description
Name: Heather Dahl, Indicio
ARF Chapter: 2.5.4 Digital Travel Credential “Digital Travel Credential (DTC) Providers may issue DTCs to EUDI Wallets in a supported format enabling Relying Parties to identify Users and their travel, thus facilitating the travel experience and the User journey in this dynamic sector.”
Recommendation: To protect a person’s freedom of movement, a traveler must be able to present their DTC for inspection to any government immigration authority in the world from their EU Digital Identity Wallet. The ability to present a DTC at will to any government must not be technically restricted by the wallet or trust model.