Community

Join the Community

23,807
Expert opinions
40,562
Total members
385
New members (last 30 days)
199
New opinions (last 30 days)
29,224
Total comments
Join Sign in

About EUDI in relation to DID - and DIIP

  1 Be the first to comment
Bo Harald
Bo Harald
Chairman/Founding member, board member
Trust Infra for Real Time Economy Prgrm & MyData,
Location
Helsinki Region
Followers
23
Opinions
551
Unfollow

1. Governance First, Tech Second

  • The EU Digital Identity Wallet (EUDI) is based on regulated trust frameworks: Member States, Qualified Trust Service Providers (QTSPs), and regulated conformity assessment bodies.

  • DIDs, by design, are decentralized identifiers without a single root of trust. The EU didn’t want identifiers that anyone could spin up without governance. Instead, EUDI builds on eIDAS 2.0 and a legal trust infrastructure.

2. Traceability & Accountability

  • EU policy requires clear accountability chains. For example:

    • Who issued a credential?

    • Who is the wallet provider?

    • Who can revoke or suspend trust?

  • With DIDs, control is often anchored in cryptographic keys, but governance and liability are less clear.

  • The EU wanted auditable, accountable, and revocable identifiers, aligned with AML/KYC and GDPR.

3. Avoiding Fragmentation

  • DIDs are not standardized across ecosystems. Multiple DID methods exist (did:webdid:iondid:key, etc.), with different trust anchors and resolution methods.

  • This risks interoperability issues in a Single Market project where all 27 Member States must work seamlessly.

  • Instead, the EU opted for a common Trust List and Registry approach, building on the successful eIDAS “Trusted List” of QTSPs.

4. Practical Interop vs. Ideological Decentralization

  • EUDI is not anti-DID—it just doesn’t rely on them. The EU relies on Verifiable Credentials (VCs) and W3C standards (JSON-LD, JWT).

  • DIDs could still be used inside the system (e.g., wallets supporting DIDComm for messaging), but the trust anchor is always the regulated EU Trust Infrastructure—not an unregulated DID registry.

5. Future Flexibility

  • The EU approach is more cautious: get wallets running first under a regulated model, then maybe later allow DIDs for certain cross-border or private-sector use cases.

  • Some pilot projects (e.g., EBSI, Findynet, IDunion) do experiment with DIDs, but EUDI core regulation doesn’t mandate them.

✅ Summary:
The EU avoided DIDs in EUDI because it prioritised governed trust lists, accountability, and legal compliance over decentralized identifiers. DID technology may still play a role, but it isn’t the foundation—the legal trust model is.

 
The DIIP (Digital Identity Interoperability Project / Pilot) under the EUDI framework has taken a more experimental stance than the strict eIDAS regulation itself. That’s where DIDs come in.

Here’s how DIIP has been using them:

1. DIDs as Technical Identifiers

  • DIIP pilots have tested W3C DIDs as a way for issuers, holders, and verifiers to reference each other in verifiable credential exchanges.

  • The DID is not the legal trust anchor (that still comes from the EU Trust List or national registries), but it’s used as a technical handle for cryptographic messaging.

2. DIDComm for Messaging

  • Many DIIP pilots explored DIDComm v2 as the secure messaging protocol between wallets and verifiers/issuers.

  • Example: instead of inventing a new protocol for wallet–verifier connections, they re-used DIDComm’s peer-to-peer encrypted channel setup.

3. Bridging Centralised & Decentralised Trust

  • DIIP wanted to test interoperability: how can a wallet that uses a DID method interoperate with a wallet that uses the EU’s central trust list?

  • Pilots showed that DIDs can wrap or reference entities that are also on the EU Trusted List.

    • For example, a QTSP can have both a DID and an EU-listed identifier.

    • The DID gives flexibility in messaging and resolution, the EU list gives the governance anchor.

4. Sandboxing Future Use Cases

  • Some DIIP pilots tested cross-border, cross-ecosystem flows (with Canada, South Korea, etc.) where no common EU Trust List exists.

  • In those cases, DIDs worked as a fallback:

    • They allow discovery/resolution across systems.

    • They can be combined with Verifiable Presentations to carry evidence of trust.

5. Key Takeaway

  • In DIIP, DIDs are used as optional technical identifiers and for encrypted communications (DIDComm), not as the root of trust.

  • The legal identity of issuers/verifiers always comes from EU-governed trust registries.

  • Think of it as:

    • EUDI core = Legal/governance anchor (Trust Lists, QTSPs).

    • DIDs in DIIP = Interop tool and technical plumbing for messaging.

👉 So in simple terms: DIIP uses DIDs pragmatically for interoperability and messaging, but the “trust” still flows from eIDAS governance.

Greatly helped by ChatGPT here..

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

849
 

Share

 
1
 
 
 

Channels

/artificial intelligence /identity
 

Artificial Intelligence and Financial Services

Artificial Intelligence and Financial Services

Join group

488 opinions 139 members

Comments: (0)

Bo Harald
Bo Harald
Chairman/Founding member, board member
Trust Infra for Real Time Economy Prgrm & MyData,
Member since
04 Nov 2008
Location
Helsinki Region
Followers
23
Following
0
Opinions
551
Unfollow

How does the EU Trust Infrastructure - support deployment of AI-agents?

EUDI2 adopts the best technical elements of SSI 

Will the public sectors not use Business Wallets? They will..

About Trust Registries

How does Metaverse connect AI-agents

See all Opinions from Bo

More expert opinions

Sandeep Hinduja

Sandeep Hinduja Vice President & Head of Banking (US) at Newgen Software Inc.

Banking’s AI Edge: The Zero Principle

John Bertrand

John Bertrand MD at Tec 8 Limited

The emerging business case and BoE latest on Stablecoins

Julija Jevstignejeva

Julija Jevstignejeva Deputy Head of Marketing at Walletto UAB

In Lithuania, the Digital Euro Is No Longer Theory — It’s Infrastructure

Alastair Gill

Alastair Gill Principal Data Scientist at GFT

Getting Business Value from AI: Avoiding a (Gen) AI winter

11

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

23,807
Expert opinions
40,562
Total members
385
New members (last 30 days)
199
New opinions (last 30 days)
29,224
Total comments
Join Sign in

Trending

Srinivasa Atta

Srinivasa Atta Cloud & AI at Google

Beyond the Chatbot — GCP's AI Agents Are a Tectonic Shift for FinTech

Alex Kreger

Alex Kreger Founder and CEO at UXDA Financial UX Design

Highlight ROX in Digital Banking to Get Executive Buy-In for UX

Raktim Singh

Raktim Singh Senior Industry Principal at Infosys

Federated Learning in Finance: How Banks and Fintech Can Build Privacy-Preserving AI

Jonathan Frost

Jonathan Frost Global Advisory, EMEA at BioCatch

The agentic bank: Where innovation meets risk

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept