FIT-AU-13 — Confirming the relying party
Reject requests without RP access certificate. Validate RP access certificate and trust chain. Show RP identity clearly. Validate RP registration certificate. Query RP register when no registration certificate provided. Compare registered vs requested attributes and warn on over-request. Verify intermediary certificates.
| Property | Value |
|---|---|
| Section | 5.4.13 Confirming the Relying Party |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-TRUST-03 | Issuer and Verifier Trust Gating |
| SID-TRUST-05 | Relying Party Registration and Over-Request Detection |
Source: Nordic EUDIW Certification System – Wallet Instance FitCEM PP Appendix