eIDAS 2.0 wallets as identity infrastructure for European agentic commerce

*The European Digital Identity Wallet enters its mandated rollout window as agentic commerce demands credential and delegation semantics the current architecture has not yet been designed to carry.*

Context

eIDAS 2.0 as Regulatory Mandate

The revised eIDAS Regulation requires every EU member state to make a conformant European Digital Identity Wallet available to any citizen or resident who requests one, with September 2026 as the operative compliance deadline. The mandate is broader than its predecessor: where the original eIDAS framework [11] addressed cross-border electronic identification and trust services at a relatively narrow technical layer, eIDAS 2.0 extends the scope to include qualified electronic attestations of attributes, a new category of trust service that governs how verified personal and organisational data moves across the single market.

The original eIDAS rollout offers an instructive precedent, though the structural differences matter. Member states deployed national eID systems to a directive deadline, and cross-border interoperability failures became measurable only after those systems were live; the most substantive technical refinements to notification procedures and interoperability nodes followed from that post-deployment evidence rather than from pre-deployment specification work [11][5]. That history supports the argument that deployment precedes specification maturity. The relevant structural difference is that the original framework involved human-in-the-loop authentication, where failure produced a declined login and no downstream consequence; agentic commerce involves autonomous execution, where a failure in an attested chain produces a completed transaction with unresolved liability.

Agentic commerce (transactions initiated or completed by autonomous software agents acting under delegated authority) was not a primary drafting concern when the Architecture and Reference Framework was published. The ARF's trust model addresses human wallet holders presenting credentials to relying parties; it does not contemplate a credential presentation chain in which the presenting actor is a software process operating within scope of a legal-person mandate. This gap sits between the framework's technical completeness and the commercial trajectory it is expected to serve. The regulatory text creates the obligation; the implementing architecture must now be extended, through delegated acts or standards, to close the distance between what the directive requires and what the deployed infrastructure can actually attest [14].

Three-Card Grid

WALLET ARCHITECTURE The EUDIW credential model rests on SD-JWT and mDOC formats with a Wallet Unit Attestation anchoring each device to a qualified trust service; the chain of trust is structurally sound for natural-person authentication but provides no defined path for software-agent holders.
ATTESTATION AND DELEGATION GAP Attribute attestation under the ARF requires a Qualified Trust Service Provider to sign each attestation, and no implementing act defines attribute semantics for non-human actors. The ARF additionally provides no credential type, no defined assurance level, and no relying-party resolution method for delegation chains that traverse natural person, legal entity, and software agent in sequence; both gaps leave the attestation surface for agentic transactions formally unspecified.
ROLLOUT READINESS The September 2026 deadline is binding in directive text, yet member-state implementation plans vary substantially in specificity; cross-border interoperability testing at the level required for commerce has not been publicly documented at scale, though large-scale pilot outputs from DEP-funded LSP consortia remain pending publication.

Wallet Architecture and Attestation Chains

The European Digital Identity Wallet operates through a layered credential architecture. At its base, a Wallet Unit Attestation binds a specific wallet instance to a certified device and to the issuing wallet provider, establishing the hardware-rooted trust anchor from which all subsequent credential presentations derive their assurance. Attribute attestations (the signed claims about a holder's identity, qualifications, or entitlements) are issued by Qualified Electronic Attestation of Attributes providers, a class of Qualified Trust Service Provider recognised under eIDAS 2.0. Each attestation is encoded in either SD-JWT or mDOC format, both of which support selective disclosure: the holder can present a subset of attested attributes to a relying party without exposing the full credential [15].

The chain of trust flows in one direction. A QTSP signs an attribute attestation referencing the holder's verified identity. The holder's wallet stores that attestation and presents it, along with the Wallet Unit Attestation, to a relying party. The relying party verifies both signatures against the EU Trusted List, completing the chain from issuer to presentation. This architecture is coherent for natural-person holders; the cryptographic suites and signature formats employed, including ECDSA and the CAdES advanced electronic signature format specified in ETSI EN 319 122, are operationally established within European trust-service infrastructure.

The structural constraint appears at delegation. The ARF defines no credential type for expressing that a software agent holds authority granted by a natural person or legal entity; it assigns no assurance level to such a delegation claim; and it places no binding on how a relying party should resolve a delegated presentation back to the originating holder. These three absences are related: without a defined credential type, an assurance level cannot be assigned, and without an assurance level, a relying party has no conformant verification path. The SSI literature documents this individual-centric design limitation as a systemic gap across decentralised identity specifications, not one peculiar to EUDIW [6][12]. For agentic commerce, the absence is not peripheral: delegated authority is the transaction's first-order identity claim.

Five Documents for Deeper Review

Abellán Álvarez, Hölzmer, and Sedlmeir (2025) on EUDIW privacy architecture [15]: the most direct technical assessment of the ARF's structural properties and residual linkability risks under selective disclosure.
Fernández (2024) on ZKP trust service regimes under eIDAS 2.0 [14]: frames the legal status of zero-knowledge proof integration and the gap between technical feasibility and regulatory recognition.
Fernández (2024) on regulatory options for ZKP integration into EUDIW [16]: maps the legislative pathways (delegated act versus primary text revision) available to close the ZKP presumption gap.
Tan, Lerouge, Du Caju, and Du Seuil (2023) on EBSI cross-border credential verification [5]: provides grounded evidence of interoperability friction in live cross-border pilots, directly relevant to rollout-parity assessments.
Glöckler, Sedlmeir, Frank, and Fridgen (2023) on SSI contributions to enterprise IAM [6]: documents the structural mismatch between individual-centric SSI design and organisational or delegated holder requirements.

Three Consequences for Commerce and Compliance

Merchant authentication architectures must be redesigned around attribute attestation, not session tokens. Under eIDAS 2.0, a relying-party platform accepting EUDIW credentials cannot treat the wallet presentation as a simple authentication event analogous to OAuth or a federated login. It must verify the Wallet Unit Attestation, the QTSP-issued attribute attestation, and the holder's selective disclosure proof as a compound artefact. This requires investment in EU Trusted List resolution, SD-JWT and mDOC parsing, and presentation-request protocol support, none of which is standard in existing European merchant stacks. The compliance deadline binds relying parties and member states alike [15][10].

Member-state attribute harmonisation creates a coordination dependency with no current resolution mechanism. Attribute attestations issued in one member state must be semantically interoperable with relying-party expectations in another. The EBSI cross-border pilot record demonstrates that attribute schema alignment does not emerge automatically from shared infrastructure: jurisdictions adopt different attribute definitions, encoding conventions, and revocation approaches, and reconciling these requires bilateral or multilateral governance work that precedes technical deployment [5]. Without a binding attribute schema registry or a published harmonisation schedule, cross-border commerce faces the prospect of per-corridor negotiation rather than single-market uniformity.

Relying-party platforms face a compressed timeline against a partially specified target on two fronts. The ARF does not define attribute semantics for non-human actors, and it provides no delegation credential type, assurance level, or relying-party resolution method for agentic transaction chains [6][12]. These are distinct gaps with distinct remediation paths: the attestation-semantics gap may be closed through a targeted implementing act extending existing QTSP obligations, whereas the delegation-chain gap requires a more fundamental ARF revision that assigns assurance levels to multi-hop authority claims. A platform investing in EUDIW integration before either gap is closed accepts specification risk on both fronts, and any commercial deployment of agentic transaction flows before that publication operates without an established liability-allocation framework for attested-chain failures.

Counterpoint

The Case for Cautious Implementation

The strongest opposing position runs as follows: accelerating EUDIW rollout ahead of full attribute harmonisation and delegation-chain specification is preferable to waiting for perfect completeness, because an imperfect but deployed infrastructure generates the empirical evidence (interoperability failures, liability disputes, relying-party adoption patterns) that standards bodies require to write conformant specifications. On this view, the September 2026 deadline functions as a forcing mechanism, not a precision instrument, and member states that deploy early with partial coverage create the test environment in which the remaining gaps become tractable.

This position has operational precedent in the original eIDAS rollout, as the context slide documents: national eID systems reached deployment ahead of resolved cross-border interoperability, and the substantive technical refinements followed from measuring friction in live corridors rather than from pre-deployment specification alone [11][5]. The counterargument also carries a specific risk, however: where the original eIDAS rollout involved human-in-the-loop authentication, such that a failure produced a declined login rather than a completed transaction, agentic commerce involves autonomous execution at speed. An attested delegation chain that carries incorrect or unharmonised attribute claims does not produce a declined login; it produces a completed transaction whose liability allocation is unresolved at the moment of execution. The asymmetry between the original eIDAS failure mode and the agentic one means the learn-by-deploying strategy carries a materially higher cost when it fails, and the argument for caution rests on that asymmetry rather than on any preference for regulatory perfectionism.

Five Unresolved Empirical Gaps

Which member states have published binding EUDIW implementation plans with allocated funding and committed to the September 2026 deadline, and which jurisdictions are behind schedule, awaits systematic documentation in the public record.
Whether the eIDAS 2.0 ARF or any in-progress implementing act defines delegation-chain semantics for natural-person, legal-entity, and software-agent traversal lacks authoritative published resolution; the relevant standards bodies, including ETSI ESI and the W3C DID Working Group, have not issued conformant guidance on this point.
The extent of cross-border interoperability test coverage for EUDIW credential presentations between member-state deployments, beyond the EBSI education-credential pilots, remains undocumented in the public record at commerce-grade assurance levels [5].
The legislative pathway (whether delegated act or primary text revision) through which ZKP integration into EUDIW would acquire legal presumption under eIDAS 2.0 awaits supervisory clarification [14][16].
How existing agentic payment protocols map onto eIDAS 2.0 assurance levels, and whether any interoperability testing between those protocols and EUDIW credential flows has been conducted, is absent from the current published literature.

Sources

[1] Soltani, R., Nguyen, U. T., & An, A. (2021). A Survey of Self-Sovereign Identity Ecosystem. Hindawi Publishing Corporation.

[2] Schlatt, V., Sedlmeir, J., Feulner, S., & Urbach, N. (2021). Designing a Framework for Digital KYC Processes Built on Blockchain-Based Self-Sovereign Identity. Elsevier BV.

[5] Tan, E., Lerouge, E., Du Caju, J., & Du Seuil, D. (2023). Verification of Education Credentials on European Blockchain Services Infrastructure (EBSI): Action Research in a Cross-Border Use Case between Belgium and Italy. MDPI.

[6] Glöckler, J., Sedlmeir, J., Frank, M., & Fridgen, G. (2023). A Systematic Review of Identity and Access Management Requirements in Enterprises and Potential Contributions of Self-Sovereign Identity. Springer Nature.

[10] Gounari, M., Stergiopoulos, G., Pipyros, K., & Gritzalis, D. (2024). Harmonizing open banking in the European Union: an analysis of PSD2 compliance and interrelation with cybersecurity frameworks and standards. Springer Nature.

[11] Cuijpers, C., & Schroers, J. (2014). eIDAS as guideline for the development of a pan European eID framework in FutureID. KU Leuven.

[12] Bochnia, R., Richter, D., & Anke, J. (2024). Self-Sovereign Identity for Organizations: Requirements for Enterprise Software. IEEE.

[14] Fernández, R. (2024). Evaluation of trust service and software product regimes for zero-knowledge proof development under eIDAS 2.0. Computer Law & Security Review.

[15] Abellán Álvarez, I., Hölzmer, P., & Sedlmeir, J. (2025). Privacy evaluation of the European Digital Identity Wallet's Architecture and Reference Framework. Elsevier BV.

[16] Fernández, R. (2024). Regulatory options for integrating zero-knowledge proofs into the European Digital Identity Wallet. Taylor & Francis.

[19] Vaziry, A., Wronka, C., Garzon, S. R., & Küpper, A. (2026, preprint under review). Know the Contract: Extending eIDAS Trust into Public Blockchains. arXiv.

The eIDAS 2.0 wallet infrastructure will be capable of supporting agentic commerce at scale only when three conditions hold simultaneously: the ARF or a binding implementing act defines delegation-chain semantics that traverse the natural-person, legal-entity, and software-agent boundary with assigned assurance levels; a cross-border attribute schema registry or harmonisation instrument removes the per-corridor negotiation burden from relying parties; and at least one qualified trust service provider, operating within a member-state pilot notified under eIDAS 2.0, completes an end-to-end attested agentic transaction with a documented liability-allocation framework for delegation-chain failures. Until that conjunction is demonstrated in a conformant deployment, the infrastructure addresses the easier half of the mandate and defers the part that agentic commerce actually requires.