Skip to main content

Organisation Wallet Overview

The Organisation Wallet by iGrant.io facilitates the issuer, holder and verifier of verifiable credentials based on the eIDAS 2.0 framework, incorporating the latest amendments and ARF (EU Architectural Reference Framework) and Implementing Acts (IA). The platform is available as an on-premise solution and a Platform-as-a-Service (PaaS), making it suitable for applications requiring issuing or verifying credentials. It supports various types of credentials, including PID (Person Identification Data), LPID (Legal Person Identification Data), EAAs (Electronic Attribute Attestations), Payment Wallet Attestations, and QEAAs (Qualified Electronic Attribute Attestations) etc.

Key Features

The key capabilities of iGrant.io Enterprise Wallet (For Organisations) include:

  • Interoperability: Seamlessly integrates with existing systems and supports data portability across different platforms supporting OpenID4VCI/OpenID4VP (JWT/SD-JWT) and Aries RFCs.

  • Support for Multiple Trust Anchors: The wallet supports multiple trust anchors, both ledgers and non-ledger ones. The ledger trust anchor support includes European Blockchain Service Infrastructure, IDUnion, Sovrin, NordXDataspace etc.)

  • Support for Multiple EAAs: The wallet features a modular architecture that integrates various EAAs, seamlessly incorporating new types without significant system overhauls.

Security and Data Privacy: All EAAs will be protected through cryptographic functions that comply with SOG-IS/BSI CSP2 security standards, ensuring user data remains secure in transit and at rest. The privacy considerations will adhere to the eIDAS2 requirements, addressing critical issues of unobservability and unlinkability.

  • Webhook Support: This feature enables real-time notifications and automatic updates within digital wallet workflows, enhancing efficiency and user experience by instantly syncing transaction events.

Deployment Option: On-Premise

In the on-premise option, you can deploy the dockerised images on your local server or your own cloud.

FeatureDefaultConfigurability
Key Storage
  • iGrant.io Secure Vault
  • Configure own HSM-as-a-service
  • Bring your own HSM
  • Custom Security Key like FIDO2
Credential StorageEncrypted Storage (SQLite Cypher)Bring your own credential storage
Metadata StorageMongoDB / PostgreSQLNot Configurable
Identity ManagementPre-Built IDAM (KeyCloak)OpenID Connect or SAML
InfrastructureAny K8s Cluster: RedPill Linpro (Sweden), GCP, AWS or Azure

Deployment Option: PaaS

In the platform-as-a-service option, the service is managed by iGrant.io with certain level of configurability.

FeatureDefaultConfigurability
Key StorageiGrant.io Secure VaultConfigure own HSM-as-a-service
Credential StorageEncrypted Storage (SQLite Cypher)Not Configurable
Metadata StorageMongoDB / PostgreSQLNot Configurable
Identity ManagementPre-Built IDAM (KeyCloak)OpenID Connect or SAML
InfrastructureK8s Cluster w/ Region SelectionAny K8s Cluster: RedPill Linpro (Sweden),
GCP, AWS, or Azure

Try out

To explore our Organisation Wallet by iGrant.io, please contact support@igrant.io to gain access. Our team will assist you in setting up and navigating the features tailored for enterprise use.