FIT-AU-09 — Operations on critical assets
User identity validation together with WSCA before signing or QES. LoA High validation. Wallet instance provides one auth factor (possession/inherence), WSCA provides the other. Third-party biometric SHALL be certified LoA High. SHALL NOT use device/platform biometric features. SHOULD support alternative modalities for users with disabilities.
| Property | Value |
|---|---|
| Section | 5.4.9 Operations on Critical Assets |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-KEY-03 | WSCD Client Library with rawSign API |
| SID-KEY-04 | R2PS Remote WSCD SCAL2 Compliance |
| SID-AUTH-05 | Wallet Unlock, Lockout, and PIN Security |
Source: Nordic EUDIW Certification System – Wallet Instance FitCEM PP Appendix