ISO has defined a standard approach for Certification Authorities to embed Legal Entity Identifiers (LEIs) within digital certificates. The move to simplify LEI integration paves the way for all digital certificates to be linked by a universal identifier to verified and regularly updated entity reference data, in a freely accessible repository, and also can contain the certificate owner’s role within a legal entity. The goal is to make certificates easier to manage, aggregate and maintain and would provide greater overall transparency.
Entities commonly hold multiple certificates from different certificate schemes and issuers, resulting in records being held in multiple silos by a variety of organizations globally. The LEI can be used as a common ‘link’ between all certificates to facilitate their management and aggregation.
Entity reference data is included in certificates (e.g. name, legal form and address), and is often embedded in text strings that are proprietary to the issuer. Manual checks are required to verify data accuracy. When LEIs are embedded in certificates, entity data no longer needs to be included, as LEIs are linked to entity reference data which is verified and freely accessible on a repository hosted by the Global Legal Entity Identifier Foundation (GLEIF). This reduces the resource burden on the certificate issuer. In addition, entity data linked to the LEI ensures consistency across certificates and carries the reassurance of being verified by LEI issuers.
Changes to entity reference data which occur during a digital certificate’s lifetime (e.g. a company changes address or undergoes a change of ownership or structure) necessitate the revocation of the certificate and the issuance of a new one containing the revised details. LEIs can reduce these instances of revocation as these changes to entity reference data appear within the Global LEI System repository and have no impact on the validity of information of within digital certificates.
The proposal for standardizing how to embed LEIs in digital certificates was brought to ISO by the Global LEI Foundation (GLEIF), whose CEO, Stephan Wolf, comments: “This development is a critical milestone in our mission to extend the relevance and adoption of the LEI beyond regulatory use cases. Our aim is to do that by promoting its capacity to enhance trust and add significant value across a wide range of digital identity management applications that sit at the very heart of the private sector. The standardization of LEI integration in digital certificates is a huge advancement towards this goal. It points to widespread recognition of the benefits that LEI adoption can deliver to this ecosystem and I’m excited to see the impact that this will have, both on the digital certificate ecosystem and more broadly, in supporting greater visibility for the LEI within the private sector.