This is to inform you that we have received Traficom regulation regrading requirement to use digitally signed authentication request (also called request-object in the OIDC protocol). It is described that the providers of identification broker services must require their customers to use digitally signed authentication request (the so-called request-object in the OIDC protocol).
This means that the digital signature of authentication request is verified and only approved requests are forwarded to provider of the electronic identification means.
Existing e-services must check that the authentication requests comply with the obligations of the Regulation and, if necessary, fix the implementation if the signing of identification requests has not been implemented by 31st December’ 2025.
CONSEQUENCE: IN Groupe is already compliant with this update. We recommend our customers to ensure that the digital signature of authentication request is verified, and only approved requests are forwarded to us for electronic identification. We, therefore, request you to check that the authentication requests you are sending to us should comply with the obligations of the Regulation and, if necessary, fix this by 31 December 2025.
NOTE: Questions can be directed to support.esecurity@nets.eu. Link to developer pages for E-Ident: BankID (NO)
Posted Jun 26, 2025 - 15:14 CEST
This scheduled maintenance affects: E-Ident (E-Ident).