The eDelivery specifications are a set of technical documents profiling several standards designed to facilitate secure and interoperable digital data exchange across the EU. They define common rules ensuring that messages and data can be exchanged reliably between different IT systems and organisations.
The new version of the specifications modernises the cryptographic suite used in eDelivery, adds support for ebCore Agreement Update and OASIS SMP 2.0.
Key updates
The new specifications introduce several important updates that improve the functionality and security of eDelivery:
- Modern cryptography:
- Updated algorithms: The specifications replace the older RSA algorithm with newer elliptic curve algorithms like EdDSA and ECDSA. These provide stronger security and better performance.
- Enhanced key exchange: Key transport methods are updated to use Elliptic Curve Diffie-Hellman (ECDH) with curves like X25519, along with HKDF. This allows two parties to securely agree on a shared secret over an insecure channel.
- Support for TLS 1.3: The latest version of the Transport Layer Security protocol is now supported, offering improved security features and performance.
- Dynamic configuration updates:
- ebCore Agreement Update: eDelivery now profiles an additional OASIS standard called ebCore Agreement Update.
- Efficient configuration management: Messaging configurations, including certificates, URLs, profile versions, security algorithms and IP addresses, can now be updated through AS4 messages once a working channel is established. This streamlines the process and reduces manual intervention.
- Support for SMP 2.0:
- Latest SMP standard: The specifications now support the most recent OASIS Service Metadata Publishing (SMP) 2.0 standard.
- Multiple certificates: Organisations can use multiple certificates for different purposes such as signing, encryption and key exchange, enhancing security and flexibility.
- Flexible Dynamic Discovery:
- Expanded lookup capabilities: Dynamic Discovery now supports lookups based on the identity of the recipient's Access Point (C3).
- Improved interoperability: This flexibility allows for more efficient and accurate routing of messages between parties.
eDelivery Building Block
eDelivery is a Building Block provided by the European Commission, offering technical specifications, installable software and services for secure digital data exchange across a network of nodes.
The eDelivery specifications include the eDelivery AS4 profile, an open technical specification ensuring secure, payload-agnostic and reliable data exchange; the eDelivery SMP profile, designed for publishing service metadata within a 4-corner network; the eDelivery BDXL profile, which enables locating Access Points within the network; and the eDelivery ebCore Party ID profile, a technical specification for the recommended notation for party addressing.
Contact: EC-EDELIVERY-SUPPORT@ec.europa.eu.