A-Team Insight Blogs

ISO Standardises Process of Embedding LEIs in Digital Certificates

Share article

ISO has defined a standard approach for Certification Authorities to embed Legal Entity Identifiers (LEIs) within digital certificates. The move to simplify LEI integration paves the way for all digital certificates to be linked by a universal identifier to verified and regularly updated entity reference data, in a freely accessible repository, and also can contain the certificate owner’s role within a legal entity. The goal is to make certificates easier to manage, aggregate and maintain and would provide greater overall transparency.

Entities commonly hold multiple certificates from different certificate schemes and issuers, resulting in records being held in multiple silos by a variety of organizations globally. The LEI can be used as a common ‘link’ between all certificates to facilitate their management and aggregation.

Entity reference data is included in certificates (e.g. name, legal form and address), and is often embedded in text strings that are proprietary to the issuer. Manual checks are required to verify data accuracy. When LEIs are embedded in certificates, entity data no longer needs to be included, as LEIs are linked to entity reference data which is verified and freely accessible on a repository hosted by the Global Legal Entity Identifier Foundation (GLEIF). This reduces the resource burden on the certificate issuer. In addition, entity data linked to the LEI ensures consistency across certificates and carries the reassurance of being verified by LEI issuers.

Changes to entity reference data which occur during a digital certificate’s lifetime (e.g. a company changes address or undergoes a change of ownership or structure) necessitate the revocation of the certificate and the issuance of a new one containing the revised details. LEIs can reduce these instances of revocation as these changes to entity reference data appear within the Global LEI System repository and have no impact on the validity of information of within digital certificates.

The proposal for standardizing how to embed LEIs in digital certificates was brought to ISO by the Global LEI Foundation (GLEIF), whose CEO, Stephan Wolf, comments: “This development is a critical milestone in our mission to extend the relevance and adoption of the LEI beyond regulatory use cases. Our aim is to do that by promoting its capacity to enhance trust and add significant value across a wide range of digital identity management applications that sit at the very heart of the private sector. The standardization of LEI integration in digital certificates is a huge advancement towards this goal. It points to widespread recognition of the benefits that LEI adoption can deliver to this ecosystem and I’m excited to see the impact that this will have, both on the digital certificate ecosystem and more broadly, in supporting greater visibility for the LEI within the private sector.

 

Related content

WEBINAR

Recorded Webinar: Data Standards & Identifiers: Where are they helping and what more can be done?

Beyond regulatory compliance, what are the opportunities for leveraging standards to improve operational efficiencies? Financial institutions are starting to realise there are clear benefits in taking a strategic approach to data standardisation as they move to more data driven approaches which require good quality, accurate data for analytics and AI programmes. This webinar will review...

BLOG

ESMA Affirms Importance of Data-Driven Strategy for EU Digital Finance Initiative

The European Securities and Markets Authority (ESMA), the EU’s securities markets regulator, has submitted a response to the European Commission’s (EC) consultation on a new digital finance strategy for the European Union (EU), in which it reiterates the crucial importance of a data-driven financial services sector. Benefits of digitalisation, according to ESMA, would include increased speed,...

EVENT

Data Management Summit London

Now in its 10th year, the Data Management Summit (DMS) in London explores how financial institutions are shifting from defensive to offensive data management strategies, to improve operational efficiency and revenue enhancing opportunities. We’ll be putting the business lens on data and deep diving into the data management capabilities needed to deliver on business outcomes.

GUIDE

Entity Data Management Handbook – Sixth Edition

High-profile and punitive penalties handed out to large financial institutions for non-compliance with Anti-Money Laundering (AML) and Know Your Customer (KYC) regulations have catapulted entity data management up the business agenda. So, too, have industry and government reports on the staggering sums of money laundered on a global basis. Less apparent, but equally important, are...