In a forthcoming white paper, Namirial CEO Max Pellegrini outlines the upcoming challenges and opportunities facing the EU, between technological innovation and regulatory adjustments, and explains why the pan-European QTSP born from the merger of Namirial and Signaturit is strategic for the European Digital Single Market.
Among the various topics addressed, Pellegrini also highlights the innovations introduced by the eIDAS 2 regulation and by the technical standard ETSI TS 119 461. Starting from a short excerpt of the white paper, this article examines several aspects in greater depth, which are also relevant to our Namirial Onboarding solution.
“With interoperable trust services – writes Max Pellegrini in his white paper – businesses can close deals or submit regulatory filings across borders with the same confidence as they would at home, reducing administrative drag and unlocking seamless access to the entire EU digital single market and abroad. The imminent advent of eIDAS 2.0 intensifies this momentum thanks to reusable digital identities and mobile “identity wallets”. Crucially, ETSI TS 119 461 requires that remote verification methods achieve a level of assurance equivalent to physical presence. France was among the first to apply these principles nationally, mandating strong video-identification standards and requiring QTSPs to follow conformity assessments under eIDAS Article 24 to guarantee both security and interoperability in a specific certification called PVID. This experience illustrates how European regulation, when combined with ETSI standards, is already driving the practical enforcement of high-trust digital onboarding”.
eIDAS 2 and ETSI technical standard
The EU’s eIDAS 2 framework introduces a strengthened high level of confidence for identity proofing, now required for issuing qualified certificates and attributes. The new Implementing Regulation mandates the ETSI TS 119 461 v2.1.1 standard as the reference for all conformity assessments, making it the benchmark for remote identity verification across Europe. Identity proofing – the initial verification of the identity of natural and legal persons – is a core pillar of eIDAS. Its robustness is globally defined through different Levels of Assurance (LoA) or Levels of Confidence.
With eIDAS 2, adopted in May 2024, the EU significantly strengthened identity proofing requirements. The new high level of assurance and confidence defined in Art. 24.1a now requires advanced, certified processes and technologies. The European Commission was mandated to identify the technical standards to be used to meet these requirements. So, in July 2025, the Commission published Implementing Regulation 1566/2025, in force from August 2025, mandating the use of ETSI TS 119 461 v2.1.1 for conformity assessments, including independent evaluations of critical technical components.
Deadline for compliance: starting from May 2026. Organizations issuing qualified certificates or attributes must adapt onboarding processes rapidly.
What changes in practice?
Current identity verification solutions operating at “substantial” level of assurance will no longer be sufficient to issue qualified certificates or qualified attributes.
The new framework defines precise requirements and multiple possible onboarding flows based on:
- Hybrid AI and human-based verification using physical documents
- NFC-enabled digital identity documents
- National eID schemes
- European Digital Identity Wallets (EUDIW)
These apply to both natural persons and legal persons.
What Namirial is now certified to do
Namirial successfully demonstrated full compliance with ETSI TS 119 461 v2.1.1 for remote unattended identity proofing of natural persons, enabling the following use cases:
1. Hybrid identity verification with operator support
Starting from physical documents and biometric binding liveness phase with almost real-time human final check (24/7 within few minutes). Should be noted that according to the standard, in case of physical document the hybrid identity verification with operator review is mandatory in all the cases.
2. Fully automated identity verification
Using one of the following:
- Electronic ID documents with NFC, integrated via mobile app or SDK
- National eID schemes at substantial level (SPID (IT), CIEid (IT), FranceConnect+ (FR), etc.) with additional biometric checks
- EU Digital Identity Wallet (EUDIW) verification, powered by Namirial’s EUDIW Gateway
- High LoA eID schemes (e.g., German ID, ID Austria) or the Namirial Wallet, achieving LoA High as a non-notified scheme (using remote HSM).
It is worth noting that Namirial had previously been certified by the French Cybersecurity Agency (ANSSI) as a remote identity verification provider (Prestataire de vérification d’identité à distance, PVID), reinforcing its long-standing expertise in identity proofing technologies.
Certified technical components
Namirial also integrated and demonstrated the use of certified anti-fraud and biometric components, including:
Injection Attack Detection – ISO/IEC 30107-3 (High) – Detects injection attacks across the entire evidence collection process.
Presentation Attack Detection (PAD) – CEN/TS 18099 – Detects presentation attacks on identity documents and biometric verification, ensuring bona fide verification.
Face Matching – ISO/IEC 19795-2 – A certified 1:1 matching algorithm confirming alignment between the ID document portrait and the applicant’s biometric capture, meeting required accuracy thresholds (FMR/FRR).
A global reference
ETSI TS 119 461 is becoming a global benchmark for identity proofing. It is referenced not only in eIDAS, but also in:
- EBA Guidelines on Remote Customer Onboarding (EBA/GL/2022/15 Guidelines on the use of Remote Customer Onboarding Solutions under Article 13(1) of Directive (EU) 2015/849, **22/11/2022)
- Expected in the upcoming Regulatory Technical Standards (RTS) under the new AMLR Regulation (in force from 2027)
- Remote onboarding requirements for the European Digital Identity Wallet (CEN/TS 18098)
It will likely become the reference standard replacing national schemes such as PVID for France, Order ETD/465/2021 for **Spain and **BaFin requirements.
Strategic impact for Namirial
This certification reinforces Namirial’s leadership following recent announcements:
- Largest QTSP in Europe
- Leader in the IDC MarketScape for Identity Verification in Financial Services
The service is already available for clients needing to update onboarding systems or to deploy fully compliant solutions ahead of the May 2026 deadline.
What is ETSI TS 119 461
ETSI TS 119 461 is the European technical standard defining the requirements, processes, and security controls for remote identity proofing. The new version (v2.1.1) is referenced by eIDAS 2 and required for Art. 24 high LoA identity verification. This affect qualified certificates we issue today. Any onboarding process used to issue qualified certificates must comply with the new rules starting from May 2026. Solutions based on “substantial” LoA will not be accepted. Existing clients using Namirial Onboarding will be supported in transitioning to the new compliant flows. Namirial already offers fully certified options, making the migration straightforward. ETSI 119 461 applies to both natural persons and legal persons. Namirial is preparing additional flows to support KYC and identity verification for legal representatives and beneficial owners.
How does ETSI TS 119 461 relate to the EUDI Wallet?
Namirial’s EUDIW Gateway enables verification through future European Digital Identity Wallets, as required by eIDAS 2. Compliance with ETSI TS 119 461 is also part of upcoming EUDIW activation and PID issuance process requirements. ETSI 119 461 is also relevant for AML requirements. It is referenced by European Banking Authority (EBA) guidelines and is expected to be adopted in the upcoming AML Regulation (AMLR) RTS for remote onboarding. Organisations should start adapting it immediately. The deadline is starting from May 2026, but conformity assessments, audits, and integration work require several months. Early adoption significantly reduces compliance risks.