Skip to content

Age Verification Trusted List

Issuers of Proof of Age attestations need to be registered to the trusted list hosted by the European Commission in the eIDAS Dashboard. The trusted list allows online services and end users to validate which entities are legally authorized to issue Proof of Age attestations.

Each Member State is responsible for notifying to the European Commission the Proof of Age Attestation Providers established in their territory.

Age Verification Trusted List Specifications

Specifications of the AV Trusted list are available in the eIDAS Dashboard

This solution introduces a new type of Age Verification Trusted List that is specifically designed for digital age verification use cases. Provided by the European Union, this trusted list acts as a central trust anchor and enables reliable validation of Proof of Age attestations across Member States. The new Trust Service List Type (TSLType) is defined as follows:

<TSLType>http://ec.europa.eu/tools/lotl/av/TrstSvc/TrustedList/TSLType/AVTL</TSLType>

The AV Trusted List not only defines a new Trusted List type but also introduces a dedicated service type for age verification providers and verifiers. This innovation lays the groundwork for transparent, interoperable and EU-wide recognition of age verification attestations, allowing Member States and service providers to easily identify authorized issuers and ensure compliance with European regulations.

<TSPServices>
  <TSPService>
    <ServiceInformation>
      <ServiceTypeIdentifier>http://ec.europa.eu/tools/lotl/av/TrstSvc/Svctype/PAA</ServiceTypeIdentifier>
      <ServiceName>
        <Name xml:lang="en">Age Verification Testing Issuer</Name>
      </ServiceName>
      <ServiceDigitalIdentity>
        <DigitalId>
          <X509Certificate>...</X509Certificate>
        </DigitalId>
..
</TSPServices>

Trusted List to support testing and development

European Commission hosts an acceptance Trusted List in the ACC environment of the eIDAS Dashboard.

This list enables Member States and online services to perform pilot testing, system integration, and interoperability validation. It provides a single shared test trusted list that includes test issuers from multiple Member States, allowing online service providers to test against several national implementations without needing separate configurations.

The acceptance trusted list also includes the test issuer from the test environment ageverification.dev (listed under Iceland).

Member States can nominate administrators for the test list. Please contact the project team via av-tscy@scytales.com for more information.

Configuring Trusted Lists in mockup services

In addition an example AV Trusted List is available in GitHub int the basic verifier backend repository. The example Trusted List also includes the issuer from the test environment verifier.ageverification.dev:

https://github.com/eu-digital-identity-wallet/av-srv-web-verifier-endpoint-23220-4-kt/blob/main/src/main/resources/av-etsi-trusted-list.xml

This example AV Trusted List is used by default both in our Docker container and when compiling and running the verifier backend locally. The Trusted List is configured in the application properties file of the verifier backend (src/main/resources/application.properties).

verifier.trustSources[0].pattern=eu.europa.ec.av.*
verifier.trustSources[0].tl.location=classpath:av-etsi-trusted-list.xml