Enhancing Federated Data Trading via Trustworthy Identity and Access Management Framework

As the global digital economy shifts toward decentralized data spaces, the challenge of securing cross-border, multi-stakeholder data trading has never been more critical. Traditional, centralized Identity and Access Management (IAM) systems are increasingly hitting a wall, struggling to provide the interoperability and fine-grained control required by complex European regulatory frameworks like eIDAS 2.0.

This paper introduces a transformative IAM framework developed within the EU-funded PISTIS project, designed to bridge the gap between technical security and business-driven data sovereignty. By extending the industry-standard Keycloak platform, our solution delivers three breakthrough capabilities:

• Seamless eIDAS Integration: Enabling certified, high-assurance cross-border authentication using national electronic IDs.
• Next-Gen EUDI Wallet Support: A pioneer implementation of eIDAS 2.0 standards, supporting decentralized, privacy-preserving login via Verifiable Credentials and OpenID Connect protocols.
• The Access Policy Editor (APE): A standalone, intuitive web interface that empowers non-technical data owners to define complex, attribute-based access rules without needing to write a single line of code.

Validated through real-world pilots in the mobility, energy, and automotive sectors, our framework demonstrates how federated data ecosystems can achieve the elusive balance of robust security, regulatory compliance, and user-centric usability. We present a vision for the future of data trading—one where trust is decentralized, sovereignty is absolute, and secure sharing is as simple as a click.