Enrolment refers to the set of actions a user needs to perform before being granted access to an e-service. This involves the verification of the user’s identity, as well as the generation of credentials (and shared secrets) to be used for authentication purposes in future interactions. This generally requires a user to provide the necessary proof of identity – the level of proof required by a service provider (identity assurance) depends on the risk levels involved (see Table 1). In low-assurance-level scenarios users may enroll by simply providing a valid e-mail address. However, when assurance-level requirements increase, more proof of identity may be required. In high-assurance-level scenarios, users may also be required to visit an enrolment centre in person to present other forms of identity (e.g. driver’s licence and biometric data). The term ‘enrolment process’ will be used as an umbrella term to represent other commonly used terms, including ‘signing up’ and ‘registration process’.