Three people are sitting in a meeting room looking at charts on a tablet and laptop.

Identity Hub

Secure Digital Identities For Trusted Data Rooms

In a connected data economy, trust is the foundation for any exchange of sensitive information. Whether healthcare, industry or public administration, data rooms enable collaboration across organisational boundaries. But without verified digital identities, there is no basis for security, legal compliance or traceability.

contact us

The benefits of the Identity Hub at a glance

  • eIDAS-compliant: digital identities for organisations, people and machines based on certificates, verified by an EU-certified trust service provider
  • Legally valid: qualified electronic seals and signatures enable court-admissible transactions within the data room, e.g. digitally signing contracts
  • High level of security: decentralised authentication without storing identity data in the federated data room, using modern end-to-end cryptography
  • Interoperable and standardised: compatibility with Gaia-X, IDSA and other technical standards as well as the EUDI Wallet
  • API-ready and easy to integrate: fast connection via REST API
  • All from one provider: supported by D-Trust GmbH as a qualified trust service provider, the Identity Hub not only enables the authentication and validation of digital identities but also the trusted issuance of certificates

Product details 

The Identity Hub is the trust anchor for digital identities in federated data rooms. It enables identity credentials to be issued in compliance with eIDAS and authenticated and validated in a decentralised manner. It transforms information from identity credentials, for example from corporate certificates or the national ID card, into so-called Verifiable Credentials. This makes digital identities usable within the data room. With these Verifiable Credentials, transactions in the data room can be validated against identity and made traceable. Identities based on eIDAS meet the highest security standards, which is particularly important for growing number of data rooms with sensitive data.

The Identity Hub as the guarantor of end-to-end identity management in the data room 

From the first certificate through to continuous monitoring during live operations: The Identity Hub covers all authentication and access verification in data rooms using real identities. This includes: 

  • issuance of X.509 certificates in accordance with the eIDAS standard by the EU-certified trust service provider D-Trust
  • derivation and creation of encrypted or digitally signed W3C Verifiable Credentials for people, organisations and machines
  • authentication of identities (via Verifiable Credentials) for access to the data room
  • continuous validation of identities (via Verifiable Credentials) at every interaction in the data room
  • revocation of invalid or compromised identities in real time 

No central storage of identity data 

The decentralised architecture of the Identity Hub ensures that no identity data is stored in the data room. The Verifiable Credentials are provided to the data room to verify the respective transactions, but once the activities are complete, no personal data remains there. This increases security and minimises data protection risks.

Legally valid transactions in the data room 

With the Identity Hub, you can not only secure access and transactions, but also perform legally binding actions, such as digitally signing contracts or data usage agreements directly in the data room. 

Sandbox and production environments 

Test the Identity Hub in a preconfigured sandbox environment or go straight into production. Both options are API-ready and integrate seamlessly with existing systems.

The Identity Hub in practice

The Identity Hub is suitable for all federated data rooms in which stakeholders want to collaborate securely and transparently across organizational boundaries, e.g.:

  • Healthcare: Networking of service providers, patients, and research institutions.
  • Industry: Secure data exchange between manufacturers, suppliers, and service providers.
  • Public sector: Establishment of sovereign administrative data rooms.

Practical example: funded project “HEALTH-X dataLOFT”

On behalf of the Federal Ministry for Economic Affairs and Energy (BMWE), a federated health data space was set up as part of the “HEALTH-X dataLOFT” funding project. As part of the project consortium, the Bundesdruckerei Group contributed the Identity Hub, which enables the authentication of all data space participants. Participants—from citizens to service providers—received verifiable credentials based on X.509 certificates to prove each member's data room membership. The result: legally compliant and traceable sharing of sensitive data between authenticated participants in the data room.

Pictogram Products

Our service offering for you

The Identity Hub offering is divided into two phases:

1. Use of the sandbox version: for testing and development in a preconfigured test data room, including test certificates and full documentation

2. Use of the live version: for production use, including certificate issuance and support

 

Contact us

Frequently asked questions about the Identity Hub

The Identity Hub is suitable for any use case that requires highly trusted identity and access management in a federated data room; in other words, wherever different organisations, systems or actors want to exchange data securely and in a traceable way. In healthcare, this can include the trusted networking of hospitals, laboratories and other healthcare providers while protecting sensitive patient data. In an industrial context, the Identity Hub enables secure data exchange between manufacturers, suppliers and service providers. In the public sector, it can ensure the creation of sovereign administrative data rooms for trusted cooperation between public authorities and external partners.

Yes, the Identity Hub meets the requirements of eIDAS 1.0. The solution is also being prepared for eIDAS 2.0 and the EUDI Wallet.

The Identity Hub is an eIDAS-compliant trust infrastructure for data rooms that securely and legally handles all processes from authentication and issuance to continuous validation of identities from a single source. You benefit from the expertise of the Bundesdruckerei Group: its subsidiary D-Trust GmbH is listed as a certified trust service provider in the EU Trusted List.

No, the Identity Hub operates in a decentralised manner and does not store any personal identity data in the data room.

By default, the Identity Hub works with the national ID card as well as corporate and machine certificates. Depending on the use case, sector-specific identity credentials can be integrated.

Yes, the sandbox version enables testing of all functions in the example data room.

Do you have any questions about the Identity Hub or would you like to learn more about the service? Our sales team will be happy to help:

Bundesdruckerei sales team

+49 (175) 550 1648

Call us
Send e-mail