Analysing the Adoption of the Terms-of-Use Field in EBSI Digital Wallets

Stefano Bistarelli, Chiara Luchini and Francesco Santini
Proceedings of the 9th International Workshop on Cryptocurrencies and Blockchain Technology (CBT 2025) in conjunction with ESORICS 2025, Toulouse, France, September 22-26, 2025.

Abstract

The landscape of digital identity is undergoing a significant transformation, moving from centralized architectures to user-centric, decentralized models such as Self-Sovereign Identity (SSI ). This shift addresses long-standing challenges in traditional Identity and Access Management (IAM) systems, including privacy risks, security weaknesses, and a lack of user control. SSI has shown its potential in domains such as healthcare and education, providing greater autonomy and data protection through technologies such as Verifiable Credentials (VCs). Simultaneously, regulatory initiatives such as the European Union’s Electronic Identification, Authentication and Trust Services (eIDAS 2.0 ) framework have accelerated the development of interoperable digital identity solutions, notably the European Digital Identity Wallet (EUDIW ), which adheres to the principles of SSI. Despite this progress, existing SSI wallet implementations largely remain focused on individual users and often lack critical features for organizational applications. In this work, we conduct a secondary systematic review of industrial digital wallets, examining their implementation of the Terms-of-Use (ToU ) field, specifically in EBSI-compliant wallets. The objective is to inform future development efforts in SSI-based digital wallet ecosystems and to identify opportunities to improve this key feature.