IAM and eIDAS – Secure Electronic Identity
Introduction
In an increasingly digital world, reliable identity verification is a cornerstone of trustworthy electronic communication. Electronic identity (eID) is the gateway to public services—whether it's filing a tax return, registering a vehicle, or communicating with the courts. In Slovakia, this function is fulfilled by two key central components: IAM (Identity and Access Management) and the eIDAS Node. Together, they form the foundation of secure, unified, and interoperable digital identification at both national and European levels.
IAM – The Central Authentication and Authorization Gateway
IAM is defined by Slovak Act No. 305/2013 on eGovernment as the module responsible for user identity verification. It is part of the Central Government Portal (ÚPVS) and follows the principles of federated identity.
The IAM module performs several essential functions:
- verifying the identity of users accessing electronic services,
- forwarding authentication data to other components (e.g. the filing system, mailbox, orchestration platform),
- supporting and managing various authentication methods.
IAM supports multiple login mechanisms:
- via the chip-based electronic ID card (eID),
- through the mobile app Slovakia in mobile (using NFC to read eID),
- via alternative credentials (e.g. financial administration login or GRID card),
- through the eIDAS Node for foreign users.
The latest version, IAM 3.0, introduces support for modern standards like OpenID Connect and OAuth 2.0, while maintaining backward compatibility with SAML 2.0 and SOAP. A major enhancement is the registration and linking of alternative identities, allowing users to maintain seamless access even after replacing an ID card or changing authentication methods.
eIDAS Node – Cross-border Interoperability
The eIDAS Node is a technical gateway enabling the verification of identities issued by other EU Member States. It is based on Regulation (EU) No 910/2014 on electronic identification and trust services (known as the eIDAS Regulation), which requires Member States to recognize notified national eID schemes for accessing online public services.
The Slovak eIDAS Node:
- receives identity data from a foreign national eID system (e.g. Austria’s citizen card),
- forwards this data to the IAM module,
- ensures the foreign user is treated equivalently to a Slovak citizen when accessing services.
Example: An Estonian student applying to a Slovak university can log in using their Estonian eID. The identity is verified through the Estonian eIDAS Node, passed through the Slovak Node, and registered in the Slovak IAM system. A temporary account and mailbox are then created for the student.
The eIDAS Node is essential for the Digital Single Market, enabling citizens to access public services across the EU without needing to register or present physical documents.
Integration and User Benefits
Together, IAM and the eIDAS Node form a complete ecosystem for digital identity:
- IAM ensures authentication and authorization for both domestic and foreign users,
- eIDAS Node provides seamless access for EU citizens from other countries,
- Together, they guarantee secure, standardized, and legally binding access to public services.
For users, this means:
- a consistent login experience across different government services,
- uninterrupted access even after changing ID cards, thanks to identity matching,
- the ability to access Slovak services while abroad, with no need to visit a government office in person.
Conclusion
IAM and the eIDAS Node are indispensable components of Slovakia’s and Europe’s digital identity framework. They enable the creation of a secure and user-centric environment for handling official matters online, reducing bureaucracy and improving access. Their continued evolution points toward even greater user comfort—supporting mobile identity, decentralized data control, and seamless integration with the broader digital government ecosystem.