Organizational identity – the corporate identity for the future
Digital organizational identities
As a result of the planned eIDAS revisions, EU member states may be required to provide each legal entity with an Organizational Identity Wallet (ODI Wallet). This wallet will hold verifiable certificates which are issued by trust service providers for the respective legal entity, such as an organization identity card, a trade register extract, bank card, vLEI and others.
The ODI wallet represents a legal entity and is able to establish a secure connection with the ODI wallets of business partners (suppliers, customers, etc.). These connections are required to exchange verifiable credentials between the participants, enabling the business partners to verify the data and transfer it to their internal IT systems.
The following video by our partner DB Systel explains how ODI Wallets will improve and automate master data management and supplier onboarding:
Contact form
Would you like more information about the use of ODI Wallets, about the pilot operation or about IDunion SCE? Then please fill in the following fields so that we can contact you.
Pilot operation
The pilot operation aims to demonstrate how specific use cases based on corporate identities can be implemented on the IDunion test network. The pilot operation is open to any organization and is designed to identify challenges involved in practical application, and to gather valuable feedback from all stakeholders.
Participating companies will get an understanding of how ODI wallets can improve and automate their master data management and digital onboarding of new suppliers.
Join us to learn how your master data processes can be improved and how the exchange of digital credentials will empower you to meet future challenges.
Roles in the IDunion pilot operation
In the pilot operation, an organization can assume four different roles. It is possible for an organization to take on only one or several of the following roles:
ODI wallet hosting providers
ODI wallet hosting providers make their software application available to other organizations to generate, verify and securely manage digital credentials. Through the wallet provided, organizations can securely interact with other participants' wallets.
Issuers of digital organizational identities
Trust service providers (TSP) have a special role within the pilot operation. By issuing an organizational ID (Org-eID) for companies, they confirm the digital organizational identity of that company.
Issuers of digital certificates
Organizations such as banks, public authorities or institutions act as issuers. They create digital certificates which are relevant for the master data management of industrial enterprises.
Holders/Verifiers of digital certificates
In the pilot operation, all organizations that want to use the ODI wallet for managing their master data will assume both the role of a holder and that of a verifier, as they present and verify certificates to each other.
Participation in the pilot operation
If you would also like to participate in the pilot with your organization, we recommend carrying out the following steps:
For an organization to be able to store digital certificates and to exchange it with other organizations, an ODI-wallet is an indispensable prerequisite. For the pilot operation you can either operate an ODI Wallet yourself, or you can use the free ODI Wallet hosting service offered by several organizations.
Please contact one of the below providers to get further information on the solutions they offer.
|
ODI-Wallet Hosting Anbieter |
Kontakt |
|
Robert Bosch GmbH (Business Partner Agent) |
werner.folkendt@de.bosch.com |
|
Spherity GmbH |
Ricky.Thiermann@spherity.com |
|
Neosfer GmbH (Lissi Agent) |
info@lissi.id |
|
Datev eG |
boris.lingl@datev.de |
When applying for an ODI wallet (step 1) the ODI wallet hosting provider will send you an invitation link to the IDunion endorser service. The endorser service allows you to register your organization on the IDunion test network and to subsequently activate your ODI wallet. For the activation you need a Public DID and the corresponding VerKey which you will also receive from your ODI wallet hosting provider under step 1.
(More information on Public DIDs and VerKEy can be found in the FAQs).
The main problem in exchanging digital identities is the matter of Initial Trust, i.e. the question of how to make sure that an organization is really the one it purports to be. In the pilot operation this problem is resolved by the Organization eID (Org-eID). The Org-eID is a digital certificate which is issued by trust service providers (TSP).
How a TSP verifies your corporate identity and issues you with an Org eID varies depending on the TSP. Currently, there is one provider you can contact to have your digital corporate identity confirmed:
|
TSP |
Contact |
|
mySaveID |
Once you got the confirmation of your organizational identity from your TSP, you can polpulate your ODI wallet with more credentials.
The process varies depending on which certificate you would like to have issued. The exact process description can be found at the respective provider of a digital certificate. The following list gives an overview of the current providers of digital certificates in the pilot operation including contact information.
|
Issuer |
Certificate |
Kontakt |
|
Commerzbank AG |
Contact: |
marcus.heizmann@commerzbank.com |
Now that you have received one or several digital certificates you can present them, by means of your ODI wallet, to your business partners or request a digital certificate yourself. To establish a connection to the wallet of your business partner you have to enter the public DID of the respective partner in the search function of your wallet. The public DIDs of all organizations taking part in the pilot operation are listed in the Discovery Service.
Once the connection has been established and accepted, your wallet saves the existing connection and you can start to exchange digital certificates at your discretion.
DID-Discovery Service
| Name of legal entitiy | Public:DID | Contact (e-mail) |
| Robert Bosch GmbH | did:sov:Y7p6otrBDNowuCDRUabBxZ | werner.folkendt@de.bosch.com |
| msg mySaveID GmbH | did:sov:3WDPV5zrNEWhAy9oRS2g8i | Steffen.Munz@msg.group |
| mm1 Consulting GmbH | did:sov:BYWBUmMbVf6MronH8pL1Y3 | f.vangelder@mm1.de |
| SBB – Schweizerische Bundesbahnen AG | did:sov:4ZUdBd9WedWVfDtntTUp83 | dominic.hurni@sbb.ch |
| Commerzbank AG | did:sov:HekacWvfkMV5UZhRcJ5Hc | marcus.heizmann@commerzbank.com |
| Deutsche Bahn AG | did:sov:PnAZpX85mnHNz8Xumqyqb6 | torben.zick@deutschebahn.com |
| GovPart GmbH | did:sov:55fnynreFmtYPYXU1cHSzo | helmut.nehrenheim@govpart.de |
| Siemens Aktiengesellschaft | did:sov:VaDkQ3ZMCfneZQXrNkP4fU | marquart.franz@siemens.com |
| Bundesanzeiger Verlag | did:sov:DQFc11pkCqk6oi9X23RyRC | nicolai.abram@bundesanzeiger.de |
FAQ’s:
The pilot operation aims to demonstrate how specific use cases based on corporate identities can be implemented on the IDunion test network. The pilot operation is open to any organization and is designed to identify challenges involved in practical application, and to gather valuable feedback from all stakeholders.
No, the pilot operation is solely designed for test purposes. All data used are test data which are being processed on the test network of IDunion.
ODI stands for Organizational Digital Identity. An ODI wallet is a wallet software for legal entities and represents a stand-alone legal body.
Public DIDs are unique decentral identifiers (DIDs) which are publicly available through the identity network. The are needed to establish connections to other wallets.
The VerKey is a public key for which verifications are required.
A Trust Service Provider is an organization which is listed in the EU Trusted List and meets specific requirements (e.g. verified as per eIDAS and applicable standards). They assume a vital role in the pilot operation as they confirm the digital identity of other organizations.