Swisscom Mobile ID is a cost-efficient, managed authentication service from Swisscom. The customer-facing API is based on open standard ETSI 102 2041.
The Mobile ID Reference Guide provides technical documentation and guidelines to use the Swisscom Mobile ID Authentication Web Service.
Description documents for the Mobile ID SOAP and RESTful web service.
- mobileid.yaml - Mobile ID RESTful Web Service OpenAPI Specification
- mobileid.wsdl - Mobile ID SOAP Web Service Description
There are two different scenarios, where x.509 certificates are involved. Since they do not have the same root CA, you must ensure that your TrustStore contains all root CA certificates.
To validate the chain of trust of the Mobile ID server certificate, it will be enough to add the SwissSign root certificate to the client TrustStore. The intermediate CAs are returned by the MID server and may change!
You can download the certificate also from https://www.swisssign.com
- SwissSign_Gold_CA_-_G2.crt - "SwissSign Gold CA - G2" Root Certificate
The Mobile ID authentication response contains a digital signature and the end-user's x.509 certificate. The customer (client) should validate the signature as well as the x.509 certificate's trust chain.
You can download the certificate also from http://www.swissdigicert.ch
- Swisscom_Root_CA_2.crt - Swisscom Root CA 2 (current)
- Swisscom_Root_CA_4.crt - Swisscom Root CA 4 (RFU)